{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dd02041e-02ac-550a-9c8a-3ea464d3d006", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/angular-http@4.4.7-tuxcare.4", "type": "library", "name": "angular-http", "version": "4.4.7-tuxcare.4", "purl": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0255f8e9-ce3b-5ede-bedc-59fa2b72c185", "id": "CVE-2021-4231", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-4231 affects version 4.4.7-tuxcare.4 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a94f2875-a5bc-518a-b930-007fa7077b03", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 4.4.7-tuxcare.4 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:15eca9ed-c91b-5ea1-83af-4e51a14e586d", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 4.4.7-tuxcare.4 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9c2145b4-d819-5fa1-a133-78cca4fbf9f0", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 4.4.7-tuxcare.4 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0307d55b-9381-5ee5-81a1-11b662c67411", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 4.4.7-tuxcare.4 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/angular-http@4.4.7-tuxcare.4" } ] }