{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e4b4b954-aaf1-532d-99c7-f3ee8466032b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/angular-http@8.2.14-tuxcare.3", "type": "library", "name": "angular-http", "version": "8.2.14-tuxcare.3", "purl": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6fd29863-8554-5764-a3ab-43b7b2e116e4", "id": "CVE-2021-4231", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-4231 affects version 8.2.14-tuxcare.3 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:087fe7d6-043f-5b41-8c46-fe35bbe8d6b8", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 8.2.14-tuxcare.3 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbd0e0f5-d975-5e54-90e2-c1291fd0e33f", "id": "CVE-2026-22610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22610 is fixed in version 8.2.14-tuxcare.3 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94d722d9-aebf-53a3-9457-3f4665e5586c", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 8.2.14-tuxcare.3 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:893f67c0-e4eb-5aa2-bcf2-8e1216d1b592", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 8.2.14-tuxcare.3 of angular-http." }, "affects": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/angular-http@8.2.14-tuxcare.3" } ] }