{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b0a50ad4-277e-5b17-9ff0-05eb3e2570e8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:29e2a027-ea8e-5e2d-90e3-ffbb2bb8c444", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2443f23-2c68-565a-822a-9cc1abac3e8e", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49a0bf01-2c9e-5fce-b54f-8fd306db5a5f", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2f5472d-1725-598e-ba09-3e6bd9b65af0", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39fe4a85-a2f0-5e05-af14-591fbdbf5ed6", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de728cdb-34b1-5572-a215-e3894b85793c", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d66905bd-a60c-553d-8f31-2aa7a0584185", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca681788-12e0-52db-aafc-4b6087339019", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37dafe70-b70c-597c-a08a-00d97f378702", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44f8ac34-eda9-5fe6-b188-303f5bfaa418", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c295fc8c-3e66-5865-a2af-cc6ddf1fc936", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:876315fd-c99a-5e05-8f91-d8bc84a6b006", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c31d5af-e66a-5077-9425-db137afe22f7", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0c6a4cc-1dee-5eef-a4c0-6ea545227c19", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7947f5d-5a40-5431-8576-c40763069c81", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13ea70fd-4fda-5da8-b2ca-3154b1b3b23e", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c95f8895-969e-5795-8b97-b0369768a4ba", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89e1eeeb-eb01-55b6-a914-a6e098876a79", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70467dba-d91f-5cb4-a373-4b71b6aa1558", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:395cbfb5-fb2a-59fa-9349-07269fb6965a", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52b36911-fda1-5071-b02e-551d90fdb42d", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:201a2a21-257f-5a55-a6d7-d60b46d46b3a", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ffb192e-0975-533a-94d8-ba8b2c167156", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5426c351-c97f-558e-9a5e-35e79cb6af80", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }