{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:631be689-53e0-5ed3-9a22-d214e3dd1f11",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1",
      "type": "library",
      "group": "io.netty",
      "name": "netty-codec-smtp",
      "version": "4.1.82.Final-tuxcare.1",
      "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:3202a9c9-a46b-5757-9d14-059a2f41933b",
      "id": "CVE-2022-41881",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:50f53716-d73d-5749-92c4-68ec7cbcc4b8",
      "id": "CVE-2022-41915",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-41915 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:126957a3-e8d5-5426-9230-b9672b5550cb",
      "id": "CVE-2023-34462",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2023-34462 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ccce70bd-4ddb-5c0e-9a1c-fe15fb05f0e8",
      "id": "CVE-2023-44487",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0bbd3f06-c7b4-5680-a152-1fe76ebdf066",
      "id": "CVE-2023-4586",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.82.Final-tuxcare.1."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9985f50a-7ecf-5859-888e-697db3a8b27d",
      "id": "CVE-2024-29025",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-29025 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bdfa479d-785f-511e-9a9e-bdda93d2bc99",
      "id": "CVE-2024-47535",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-47535 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5103dbbc-cc52-53e5-a80a-82de1529cfe5",
      "id": "CVE-2025-24970",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1d6f8bd3-bb6d-5960-a990-98e185fc74e3",
      "id": "CVE-2025-25193",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-25193 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:faf2fcd9-8578-5aab-b04b-b0966a34f44a",
      "id": "CVE-2025-55163",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5393e8ca-e3de-5a8d-86e2-5fc703d52bbe",
      "id": "CVE-2025-58056",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-58056 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:aa6f22bf-c77d-548f-b25f-64aef9b9b1eb",
      "id": "CVE-2025-58057",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-58057 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:89e3ebf0-1911-52c6-84d4-c88994c3067f",
      "id": "CVE-2025-59419",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cf7fff43-1be7-5f10-a401-9119ecd4441d",
      "id": "CVE-2025-67735",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-67735 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:22ccd48a-3942-519a-9afc-4778f3d75c84",
      "id": "CVE-2026-33870",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33870 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:282ea203-98d9-5d57-943d-155e7e71cd70",
      "id": "CVE-2026-33871",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33871 affects version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8bd3370d-e63a-510e-bb22-010c7436be68",
      "id": "GHSA-xpw8-rcwv-8f8p",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p is fixed in version 4.1.82.Final-tuxcare.1 of io.netty:netty-codec-smtp."
      },
      "affects": [
        {
          "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.82.Final-tuxcare.1"
    }
  ]
}