{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8663eb7d-212a-5659-a52a-ad1037c70f88", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/angular@14.3.0-tuxcare.4", "type": "library", "name": "angular", "version": "14.3.0-tuxcare.4", "purl": "pkg:npm/angular@14.3.0-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f7390be0-a44e-5b18-a3cd-c0bd3ad7f9a4", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 14.3.0-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a17c1a80-b0c8-5f0f-a96e-48c16b02a7da", "id": "CVE-2025-66412", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66412 is fixed in version 14.3.0-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:6c691dd1-166a-5c98-b483-53f316f1bf73", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 14.3.0-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b6ebceb-b68f-551e-99a3-09f6a7573e93", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 14.3.0-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:311ab53c-f7f0-5e83-94b6-cda2adeecce0", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 14.3.0-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/angular@14.3.0-tuxcare.4" } ] }