{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f9e2650d-2c3a-5675-9a1e-e5769822cf77", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1", "type": "library", "name": "astrojs-telemetry", "version": "5.18.1-tuxcare.1", "purl": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e0c6aac5-82bb-5ff6-91ec-35fa75d7a353", "id": "CVE-2025-55303", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55303 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98bc2e39-a784-5fa7-8792-8be601261988", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30142c3c-2002-5b71-869c-467a78c2c120", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1df7eb24-d86c-5fe8-8609-f7169a4d3de0", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78f17da0-a16c-5b7f-884d-388640504307", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a175baab-a06e-56ff-9866-ff62bf3136a5", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a569b964-9ab5-5a1f-be56-259c9d6dd7e0", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffc7fb50-7469-577f-bbf2-29611bc4b7d6", "id": "CVE-2026-41067", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41067 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92b63a0f-4e85-5563-ab8a-fdb3b6eb4aa8", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 5.18.1-tuxcare.1 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.1" } ] }