{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9ec406ca-acc1-53c5-a6e6-d24aafd7a5fe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.92.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d38fb23c-4994-5e3e-8702-0e0f136b0617", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:189d57af-e689-5a0d-afdd-3c3ce257a5bd", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc2200c8-cda4-508e-af5d-23d6be6ab446", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.92.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d8cc5a6-eee4-560a-93a2-18c42c2e829c", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b72c979b-51e8-5f27-9390-62b6e47386d5", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eeee631d-df4a-5325-8d7f-29b07bfda5bd", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f694d691-98c4-58f2-b854-d18333376b66", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0650e011-e388-5fa9-b4ad-093832670bda", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ee65260-dd31-5414-a064-2bcfcabfe127", "id": "CVE-2025-58056", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58056 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10585bbc-d995-5755-999a-52bf7f0d6be7", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9601c2ad-9200-5d80-8032-134a896804fd", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b6dccdbe-194f-5ca9-919e-95c6d3c86900", "id": "CVE-2025-67735", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-67735 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cbb32a7-a9e5-555e-958e-2bfa1f415f5c", "id": "CVE-2026-33870", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33870 is fixed in version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d52da2a4-d6de-53b5-ad34-bf0a132052d7", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7d586385-519c-5162-82a5-95689c43f793", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc24f316-5909-5bb1-93d5-c4224daecddd", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2a6d500a-51d5-580d-b8d9-8d636ab88904", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:769d1aea-d731-5677-b736-8063d16a8382", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c28920b-f926-5d74-aaa3-be06332c0fa8", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:560bc274-09c9-5326-926e-d7a691dc2e0f", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1e290fb-870d-5892-a30c-b9affab7acb2", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52e26a58-6e31-543f-af0d-c6b94beb189b", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c7e6879-3beb-57ed-b355-1f5f3d96f4a9", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7594dab3-8435-5329-833f-7e523a3e05ad", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:977b8cd0-95ff-59dc-bdc9-1f7f2a8b30b5", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a65a773c-f114-55fa-9a56-65f0df770fb6", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.92.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.92.Final-tuxcare.3" } ] }