{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:146644c5-ce45-5af3-87b4-497266a83ef6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.92.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7dd853c8-9c0e-54e8-a093-403aad02f16d", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aab80b4f-ce30-5a07-af4a-d24f0df8614e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:552ecc96-9899-5a24-8248-04e874a1d21b", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.92.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58f5e3df-a67f-5be1-a676-f042b491356e", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efa45a1a-7d4d-5b73-b3ec-349fb6635c41", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18cf78ae-24f7-59ac-9814-1579fdcdfe9e", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d26fc9f-16ef-529d-8d5d-71c532425894", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:add56dd6-f023-5040-91fb-3c22096d9c51", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d10baead-9ce4-50cd-9610-50475c01968f", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85a85f76-f59b-5bda-802f-eb281e2a3e04", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:309f13bb-ec6a-5cd1-87cf-40c2407d391b", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf53bc66-730c-5eeb-9787-acfc224537d8", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0b85fc3-88f1-5420-a955-2e8dc9aba434", "id": "CVE-2026-33870", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33870 is fixed in version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:391494a6-f062-5669-9d29-220319762f31", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16aacc53-508a-5203-859f-a4f5cd72c397", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ba2903f-dd5e-5dd6-9512-c632fdbe8694", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4bdf1cf8-a502-5590-ae27-11f9304927e6", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e21c44d-457b-566a-b9ba-3ad0929c69a5", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0aaa48c0-925e-594d-affa-ff5018bd8794", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a43dd559-a86d-5fb9-b5a6-2a8972d9ba62", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:064ba55b-d907-5ef0-89e3-2fd7ec3f33f0", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efa8dceb-0bcb-5dd5-bf1c-96ea470a88cf", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f98dfa28-3393-5e8b-9e62-8463f02f0250", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa2b737a-d289-5c43-990a-bbbb98b5cf5f", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf433135-7245-5bed-90d9-3b44459c7e71", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f98403c-e59e-52a5-8f0c-722ec1b91d16", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.92.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.2" } ] }