{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:42e1b47d-0e64-55cc-85f1-db92ee60dab0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.112.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b952b5ed-79ee-592a-a32d-d23e96ee6ffb", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:585a8887-b901-575f-8f3e-deb710973e8d", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a983709-36e7-53c4-b8a6-4926d9ab06de", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:198fc0b1-c24a-5363-b83c-0534ca09ed4e", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9587aa4e-7140-5181-b915-41b1209a46c4", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c92cac3-5603-5e10-94fa-9827bb065544", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0708d58e-d025-5038-8df7-cdd9f87e88c5", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6190d6c6-e4ad-51a1-8059-89206e3f6faf", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cc77c6b-045c-5fd6-a52f-42af7fc3d4f8", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d8bc20a-269c-51d2-ace3-b62930b93e29", "id": "CVE-2026-33871", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33871 is fixed in version 4.1.112.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.112.Final-tuxcare.2" } ] }