{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e99debf9-3750-5869-a9b5-8f3fab1c80fd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.75.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9611a203-79ac-5c9b-aaec-f386b5806035", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8529352a-e993-54cd-8e8e-8837086d6645", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:601eb503-6d6b-5326-bc25-a275636edec2", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76331243-fca8-5067-8996-57baa574a909", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:030759c0-2851-51f3-a782-2563f8bdb13e", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:299ca08d-593d-509c-baa8-0ef101cc19f7", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.75.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3229b132-cea6-5e74-a439-b482f65ba472", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f553cafe-3c94-58e9-905b-ceac074b43a3", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b862dbdb-7de3-5a31-91ae-f72e9e0587ab", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22893480-cc27-5c3f-8bd2-841a0a0ff209", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a8528d9-5a09-5733-ab6f-d6bab59eeeff", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c46f045-5c18-5c32-b056-5bdac9a2680d", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3726ea43-e5b9-53e6-99ee-4fa84f925340", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff9321d5-84d2-5811-99bc-386eaf95273c", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8d48563-8a05-5242-bf55-fd4279450439", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b79d611-418d-5a52-95ba-4882a6de369f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:564fcece-b686-56d1-b05a-35008f174783", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76800def-6b41-57cc-9050-16241aa0dcb9", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.75.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.75.Final-tuxcare.1" } ] }