Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Netty SMTP Library Allows Unauthorized Access to Email Systems
ROOT-APP-MAVEN-CVE-2025-59419
Summary
A security patch has fixed a vulnerability in the Netty SMTP library that could allow an attacker to access email systems. This affects organizations that use the Netty SMTP library, so update to the latest version to prevent potential unauthorized access. If you're using this library, check with your vendor for the latest patched version.
What to do
- Update io.root.io.netty:netty-codec-smtp to version 4.1.118.Final-root.io.11.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | io.root.io.netty:netty-codec-smtp | <= 4.1.118.Final-root.io.11 | 4.1.118.Final-root.io.11 |
Original title
CVE-2025-59419 in io.root.io.netty:netty-codec-smtp - Patched by Root
Original description
Root has patched CVE-2025-59419 in the io.root.io.netty:netty-codec-smtp package for Root:Maven. Multiple fixed versions available.
Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 9 Apr 2026