{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:31ebf2b0-a67c-5359-9a69-68b18f0e94a7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astro@0.26.1", "type": "library", "name": "astro", "version": "0.26.1", "purl": "pkg:npm/astro@0.26.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9418608a-2591-54e4-aa30-17005af04657", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:1d8248b9-d3e8-5ec0-9656-3be758c3524b", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:fbc3f036-f803-5d7a-b3e1-27faa1110979", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:1f280ae2-b329-55bf-8bb3-986fd779f751", "id": "CVE-2024-45812", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45812 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:1f64336a-6823-5819-818a-8238e08edcbd", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:fce0fb61-0c9d-55a3-b1cd-49d4d8c9796e", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:82d57445-53b6-58e5-a62a-347afaf8482f", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:ee5d8e85-a1ba-5831-acba-bc63a538a4ce", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:f5dda9be-9e4c-527d-9ba0-4421fe08f47c", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:e67258e0-5076-5901-b119-00f3b5146658", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:96a6aa59-3277-5026-8d7b-ea9eb09e5d9f", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:1ca0ce98-a9af-5d54-ad90-8462cfe61d12", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:920ecde8-0791-5f15-afc8-6c9af1d805db", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:10b8e44e-d861-53f1-a496-f8d54f33ae9b", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:d7c0f565-5bd8-5ae6-b378-2744e9ba6ac4", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:0e44087c-2ad6-5e75-894f-11b5cad6337b", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] }, { "bom-ref": "urn:uuid:966266ed-2c25-53b3-8e9e-587e4c84f967", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 0.26.1 of astro." }, "affects": [ { "ref": "pkg:npm/astro@0.26.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astro@0.26.1" } ] }