{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0e0ac1ad-5ea3-59f7-a556-8e773cf49a71", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2", "type": "library", "name": "astrojs-telemetry", "version": "5.18.1-tuxcare.2", "purl": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:027cb247-7e6f-53d8-9b48-e5c5aab2477f", "id": "CVE-2025-55303", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55303 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69ab9e18-5781-5351-8f81-25295f777571", "id": "CVE-2025-58751", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58751 is fixed in version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:925c3d09-cd2b-5563-aeea-22fe73635cf3", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:079c8b17-4020-5c4d-b0cd-7ccde74a9eea", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e4f3e06-f3af-516e-85b9-255532bc82e7", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:036974cc-a4cf-557b-ac4b-0f92b12adf67", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17fb4ade-2792-59d7-8693-250da66b4db5", "id": "CVE-2026-39365", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-39365 is fixed in version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d075d20-34e6-5a2d-ad3e-2857bf440fd0", "id": "CVE-2026-41067", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41067 is fixed in version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d9805253-5bf7-59c4-9784-22b54e9e6854", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 5.18.1-tuxcare.2 of astrojs-telemetry." }, "affects": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-telemetry@5.18.1-tuxcare.2" } ] }