{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:faf823dc-c3c5-553a-88fa-68b1f5255219", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4", "type": "library", "name": "angular-upgrade", "version": "6.1.10-tuxcare.4", "purl": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ff18702e-6e6b-5945-a1d4-831ed92d3345", "id": "CVE-2021-4231", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-4231 is fixed in version 6.1.10-tuxcare.4 of angular-upgrade." }, "affects": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:251ed2ca-1691-5cc8-ac2f-f8fddbf26cfa", "id": "CVE-2025-66412", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66412 is fixed in version 6.1.10-tuxcare.4 of angular-upgrade." }, "affects": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:13c37116-b08f-5e14-8178-23e9f58d8593", "id": "CVE-2026-22610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22610 is fixed in version 6.1.10-tuxcare.4 of angular-upgrade." }, "affects": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3e8cd4dd-3628-5e34-be09-69e32b40e497", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 6.1.10-tuxcare.4 of angular-upgrade." }, "affects": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f2629975-a542-5147-ae94-632601808e0d", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 6.1.10-tuxcare.4 of angular-upgrade." }, "affects": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/angular-upgrade@6.1.10-tuxcare.4" } ] }