{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:912f1acd-e9b5-5f4d-b2ea-8196148fbbe3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-rss@5.18.1", "type": "library", "name": "astrojs-rss", "version": "5.18.1", "purl": "pkg:npm/astrojs-rss@5.18.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e27c558d-d528-5eec-89ff-cc2c0e593388", "id": "CVE-2025-55303", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55303 affects version 5.18.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] }, { "bom-ref": "urn:uuid:5310b058-2f9b-5185-8bb7-c6434b7872a3", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 5.18.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] }, { "bom-ref": "urn:uuid:f1fd080c-c9f6-565d-a8e8-e2f66058ce3d", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 5.18.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] }, { "bom-ref": "urn:uuid:f36ac2a1-9202-597e-817b-73e691a4b979", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 5.18.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] }, { "bom-ref": "urn:uuid:3c5b3310-c952-55c9-945d-efe548d0856c", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 5.18.1 of astrojs-rss." }, "affects": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-rss@5.18.1" } ] }