{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:303cdeb3-8ca9-59da-ba3c-fc262dc333b0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.63.Final-tuxcare.3", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:36bbf6fd-a828-5314-a2ea-3df434fad76d", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c581dc3e-a954-5a42-ab5e-4b33d4150438", "id": "CVE-2021-37137", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37137 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d3dd6406-5aa9-56ff-bfcf-70d109257942", "id": "CVE-2021-43797", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-43797 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02a04f28-1f4a-5d03-99d8-8a612423a55f", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0b827799-7f41-517a-9aa2-704dfe35561e", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7966cab0-9b9e-5989-af5b-b2b0a4933485", "id": "CVE-2022-41915", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41915 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b790bfa5-ded9-54a3-b430-385769202420", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f073b050-73da-5663-88c3-22e46ceb9da1", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7643f831-cfa0-54e6-9a19-66ded72a1c25", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.63.Final-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6141d40f-fa51-512b-84e0-8930025f06a0", "id": "CVE-2024-29025", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29025 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f2cd433-34bc-519d-bcc7-8e813e10d775", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9bf6ec5a-0a02-5396-a31c-7b950ab04aa8", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a9df619-063d-5b43-9bdf-f522c98f4957", "id": "CVE-2025-25193", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-25193 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ee86abf-44b6-5aa5-9d81-cfbd42e643bb", "id": "CVE-2025-55163", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55163 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1338f518-46ec-5fbd-ab5f-0da08c285da3", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30475fa2-a084-52ad-8275-789defe0a9cc", "id": "CVE-2025-58057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58057 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e003f253-4048-551f-9298-9913395f66d4", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26879a2d-b019-5d73-8dab-dd88f95894ac", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac1265fc-7cdc-5c61-afc6-e2593f40435f", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7dc6a60-82fa-511c-91b0-0353d29c42be", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c4d0f5c-14cf-5be5-bda2-cccdccf9e45f", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e82d1f89-dec5-514d-b054-a09e3f338b9a", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c2f0f63-b576-5846-b894-460852825961", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b34cb232-f374-55fe-a73a-9acc064ed291", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc4986f1-e574-51ce-828e-587c3e272ff7", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64e255be-3473-5cc2-820b-d8976f98a40d", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0e561c3-f180-5a6d-8162-48609af484b6", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2e7d33b-af30-5ea7-b4b8-04f484ef67ed", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec41cc9e-085d-5c35-a119-0549b9b501c3", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:223838ef-3097-51d5-a8e5-ab1ed569bdac", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6bbc17de-500d-5999-9825-4509984d8876", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8297e2b7-33f8-5ee6-83ef-01b83df38e85", "id": "CVE-2026-44249", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44249 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0497270a-8d8f-51be-893d-76bfcf340885", "id": "CVE-2026-44250", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44250 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:420de6fe-c2dc-566c-a2fa-54bfe652bd90", "id": "CVE-2026-44890", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44890 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed88196c-213f-53a9-9115-48eef4547fbc", "id": "CVE-2026-44893", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44893 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04a7d7e8-295d-546c-baaf-2ea7ce46026a", "id": "CVE-2026-45416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45416 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:964a9b29-02fb-5c78-9c0c-b0cea8bd8ad5", "id": "CVE-2026-45536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45536 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:877bd5a0-5e9a-5607-b5c7-d2c6348267f1", "id": "CVE-2026-45673", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45673 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:957d1b59-a38c-5dc2-9a3d-f2f6b2666b56", "id": "CVE-2026-45674", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45674 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3386aa95-aabb-5a0c-9320-ed6aa5fe49ff", "id": "CVE-2026-46340", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46340 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cab902f-85c8-52e7-bfc6-35191a3c2588", "id": "CVE-2026-47244", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47244 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83579e7e-229c-5b0b-80f9-d980668446fb", "id": "CVE-2026-47691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-47691 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f07a79c9-5dc1-5d01-aa46-454c7d479814", "id": "CVE-2026-48006", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48006 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b1036840-a9aa-569f-b54d-70b58fac518c", "id": "CVE-2026-48043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48043 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e8ed131f-2d53-526f-a99a-2314676c99b6", "id": "CVE-2026-48059", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48059 affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95b1b159-3a68-5476-b775-e605d7fc5786", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.63.Final-tuxcare.3 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.63.Final-tuxcare.3" } ] }