{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:394f0c8b-ece0-5e1f-b6e3-6c99241222e9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.49.Final-tuxcare.1", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:29e2a027-ea8e-5e2d-90e3-ffbb2bb8c444", "id": "CVE-2021-21290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21290 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2443f23-2c68-565a-822a-9cc1abac3e8e", "id": "CVE-2021-21295", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21295 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49a0bf01-2c9e-5fce-b54f-8fd306db5a5f", "id": "CVE-2021-21409", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21409 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2f5472d-1725-598e-ba09-3e6bd9b65af0", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:39fe4a85-a2f0-5e05-af14-591fbdbf5ed6", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de728cdb-34b1-5572-a215-e3894b85793c", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d66905bd-a60c-553d-8f31-2aa7a0584185", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca681788-12e0-52db-aafc-4b6087339019", "id": "CVE-2022-41881", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41881 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37dafe70-b70c-597c-a08a-00d97f378702", "id": "CVE-2022-41915", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-41915 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44f8ac34-eda9-5fe6-b188-303f5bfaa418", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c295fc8c-3e66-5865-a2af-cc6ddf1fc936", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:876315fd-c99a-5e05-8f91-d8bc84a6b006", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.49.Final-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c31d5af-e66a-5077-9425-db137afe22f7", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0c6a4cc-1dee-5eef-a4c0-6ea545227c19", "id": "CVE-2024-47535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47535 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7947f5d-5a40-5431-8576-c40763069c81", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13ea70fd-4fda-5da8-b2ca-3154b1b3b23e", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c95f8895-969e-5795-8b97-b0369768a4ba", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89e1eeeb-eb01-55b6-a914-a6e098876a79", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70467dba-d91f-5cb4-a373-4b71b6aa1558", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:395cbfb5-fb2a-59fa-9349-07269fb6965a", "id": "CVE-2025-59419", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59419 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52b36911-fda1-5071-b02e-551d90fdb42d", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:201a2a21-257f-5a55-a6d7-d60b46d46b3a", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ffb192e-0975-533a-94d8-ba8b2c167156", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40bb1ab5-83eb-5e35-b832-bf69d63a1634", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a296fb2c-e2ad-562e-855e-0099a15f7143", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e3f936a-dbe4-58fe-bc8e-865154680c89", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d04548c7-42b8-5238-8b6f-001b7ebdfd18", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63fcc6b0-23a4-55b2-9a06-9fcdae6efe15", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a493c4c7-741c-5ec7-b6fb-796d85f8b57f", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9343d19d-5e59-54f7-bcc6-02c40a34a766", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea847e93-d067-53c7-8caf-bbfec0e91d18", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e07b4fc4-3b3b-57db-8d82-863c8233260f", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c15523d2-dce9-58dd-8094-69151c663340", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88f36e06-49da-5f4a-8e51-558e6f8f64cd", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd42dfe4-79f0-5360-8d48-68430f66ae4e", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2a340fe8-209b-5196-ae0a-d98edb93ced9", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8973759-e959-5c4a-a6c8-c82c835bab60", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:837ef300-b38a-565c-9159-eaeb184395d5", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be1a90c5-f9aa-5031-bd26-f1954f232cc2", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2700c2cb-227f-55e7-90bf-92a6bda42e89", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e817acf4-86ed-576c-a356-b1f0ef8fe247", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:142870f5-2132-59c0-80b3-a05cbd1e6b61", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51385ab4-032e-519a-aeaf-d1daafb62567", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2567f20d-d110-5153-bc68-3488d9a2cf32", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e19a8bc-8201-56fc-8ca4-03cbf8838048", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a204e415-1a0e-5f5d-bb15-734a8f1cbc58", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88b8bfa5-1f6f-5b72-80e0-b26c4f431b2c", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc732724-040c-53d9-ba7b-8d337e413412", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5426c351-c97f-558e-9a5e-35e79cb6af80", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.49.Final-tuxcare.1 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.49.Final-tuxcare.1" } ] }