{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:73f92ff9-5732-564f-a7dc-93ae30a14bca", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2", "type": "library", "group": "io.netty", "name": "netty-codec-smtp", "version": "4.1.58.Final-tuxcare.2", "purl": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:113c13e6-f7b5-5fbb-ada4-df287ff3d3e9", "id": "CVE-2021-21290", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21290 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4dbe0f36-f5c7-59d3-a477-fc0785530c87", "id": "CVE-2021-21295", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-21295 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e9bf845-215a-5018-b345-323c0491432a", "id": "CVE-2021-21409", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-21409 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:768b4c2d-4835-5906-bfd3-924cfb4e7324", "id": "CVE-2021-37136", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-37136 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2d494af-bfd5-5356-b6f5-9f9b846b2f55", "id": "CVE-2021-43797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43797 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62f83d6a-4cfa-5c38-b23c-95155d1fb31f", "id": "CVE-2022-24823", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24823 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:714bb4b4-7c3d-5f00-ac1d-ebf486dc8578", "id": "CVE-2022-41881", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-41881 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:897ffa3e-c944-51cc-bb67-910592a089ff", "id": "CVE-2023-34462", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34462 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0efc2ec0-03e2-543e-802a-e2db7ad531d4", "id": "CVE-2023-44487", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-44487 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0fd9fbab-e8fa-5518-86b7-e431db5db552", "id": "CVE-2023-4586", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2023-4586 is a false positive for io.netty:netty-codec-smtp 4.1.58.Final-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dd053b30-63ee-50af-ae8b-1480f2d82da7", "id": "CVE-2024-29025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29025 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a961f49-44a3-5baf-958d-62975f49573a", "id": "CVE-2024-47535", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47535 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b0a7b5a-7be1-5898-8c95-9fa9f271f0aa", "id": "CVE-2025-24970", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24970 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b01f27a1-dfdf-5815-a34a-13f8d2ec3914", "id": "CVE-2025-25193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-25193 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2dc065b-b892-51b2-b691-1589f8a04560", "id": "CVE-2025-55163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55163 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aaad0be4-b47b-5ba9-bdb6-b80178d84f08", "id": "CVE-2025-58056", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58056 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6d3cca4-7980-545a-8e86-4d1eef409309", "id": "CVE-2025-58057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58057 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f42048fc-d160-5aea-8bd2-a75e8ece843b", "id": "CVE-2025-59419", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59419 is fixed in version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f295ab98-8a56-5e86-995e-d66d95df33c9", "id": "CVE-2025-67735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-67735 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4eff75f8-e7e5-58dc-baf3-10ce3417ba14", "id": "CVE-2026-33870", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33870 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abdd1bba-4954-548d-bb01-e5e8e1059d9e", "id": "CVE-2026-33871", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33871 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62f9d331-9f71-585d-871b-e629cd13f4f9", "id": "CVE-2026-41417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41417 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9bd5614-5569-5e3d-a35c-9bc56e49245e", "id": "CVE-2026-42577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42577 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6197fdb5-6b92-578e-8c1a-7bbc3ef62e0f", "id": "CVE-2026-42578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42578 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a88b863d-1a2a-5162-aef3-994bdf055796", "id": "CVE-2026-42579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42579 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:728904c5-18d3-54b0-9cd7-be8d00294152", "id": "CVE-2026-42580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42580 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13dd114b-a087-543c-b4cc-0c0a59ccffa6", "id": "CVE-2026-42581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42581 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50c08fc0-306b-53d7-8cab-db47b3adff3e", "id": "CVE-2026-42584", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42584 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a997e8ac-2d95-50fb-b1e1-1cb4bd8537b5", "id": "CVE-2026-42585", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42585 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afc58c4a-ec1d-5b8f-a3e5-58702c9b552a", "id": "CVE-2026-42586", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42586 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:926bb710-50e9-50d8-bade-1c7c31d3fae6", "id": "CVE-2026-42587", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42587 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f11d1bc-6d1a-57ac-8450-809ff6166291", "id": "CVE-2026-44248", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44248 affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55ebe964-c86a-5428-b0d7-4c6ee2fee8d3", "id": "GHSA-xpw8-rcwv-8f8p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-xpw8-rcwv-8f8p affects version 4.1.58.Final-tuxcare.2 of io.netty:netty-codec-smtp." }, "affects": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/io.netty/netty-codec-smtp@4.1.58.Final-tuxcare.2" } ] }