{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:92ecbcff-6f49-5ea5-a941-debbd6cc51c7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/angular@15.2.10-tuxcare.4", "type": "library", "name": "angular", "version": "15.2.10-tuxcare.4", "purl": "pkg:npm/angular@15.2.10-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:dde627f5-e419-55df-bcaa-eb4c541cf41b", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 15.2.10-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:879019a5-2b2f-59d2-b815-4e84c6420df5", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 15.2.10-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:da6ef6db-90c4-5750-adfb-1a1e6634caf7", "id": "CVE-2026-22610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22610 is fixed in version 15.2.10-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2dbfcdd6-f431-5a1f-a199-3861b1a116e2", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 15.2.10-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4efb6397-56c9-5e08-97d7-90c7084b5e0b", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 15.2.10-tuxcare.4 of angular." }, "affects": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/angular@15.2.10-tuxcare.4" } ] }