{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b7eee270-3bdf-5a4b-a824-03310e35eed2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.82.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dcb77c47-f418-553d-9b80-a81adbb1d712", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc72e15c-cff5-598f-aacc-169174394ea7", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff9d92d5-0964-560b-9319-8fa347aa6d67", "id": "CVE-2023-34462", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d61cf60-337a-5d39-a40d-91dc9868a84b", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f62feb46-e176-535b-8994-c4aad0f49b0b", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.82.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e8e398b-10bb-5b70-989d-f608121792f1", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54309626-774e-5eee-b6c7-237ff4b6f938", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a0d8117-0d69-51e6-9818-34f625400161", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b0baf6ba-bd42-53fb-b470-e1cc64d7ca81", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c067e6f-1ea3-5fd9-b709-a36b6239a603", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3adf2fb7-2985-594e-b1d3-587a5abc8bb6", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:116de002-fc0f-5f70-8f69-d63201ffcb00", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf8d60a5-1882-583f-b76c-741ddc37b997", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b99f7db1-a078-51ed-9464-3f4348ce62c2", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82e3ccbd-fb12-5b64-8828-c3476c21c822", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9cdddb5-e3e6-599d-b9c9-1444e77a21ab", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79be0970-257c-5ba4-9d0a-43383b5fedea", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1e31b575-a93a-5d4b-8c00-9dee6c1d8378", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12c162e9-400b-5b6c-b286-e605afeb7ae0", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13ddc3a9-1348-59d0-8cd6-eb27b82f778a", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:93cf9cf1-ecf5-5c35-9363-88f445c7adfd", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b50aef98-4948-5198-a850-0129da125dfe", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4c220f6-f1d9-5e3e-b46e-771690e38539", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaeb0cc7-5e55-5628-85f5-6bfc1f8d18ee", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:760dc371-65b5-538a-ae86-cb471b588444", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6100f37d-eef5-56d4-b30d-d6a04b4c798b", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:344c7661-be4a-5dc9-811a-152f927db838", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f640bb89-c61e-5054-a81f-f7bf924c0946", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.2" } ] }