{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:888d60fd-5f87-5425-9f49-ed0b2ae01021", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1", "type": "library", "name": "astrojs-webapi", "version": "0.26.1-tuxcare.1", "purl": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f8bf13be-0a7f-5c85-9056-82190ffa204d", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48ab8c2a-e907-5510-8f2f-53dc4f34d16b", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb91fcee-3633-5f04-819b-9019cffe8257", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecf91c31-77d9-55d9-a916-ecf21e5d84bc", "id": "CVE-2024-45812", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45812 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2bc099d5-e5ba-54e1-9c4d-83489e228689", "id": "CVE-2024-56140", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56140 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be429c7f-313a-5b55-837f-7815257dac7d", "id": "CVE-2024-56159", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-56159 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71dffda4-6387-5aab-bac4-d132a8cc8e20", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c35e99d-787d-5429-b4c1-863d0971db95", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:febb6cab-62cc-533d-8834-fbd9455681ab", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64a2663d-63ad-50e7-9846-ac45e207c1f4", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:909b8032-7603-5b7f-b9f2-7b3c306c6be5", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:648c7471-637a-59e5-8103-c38e43a58a8f", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff3ff1ee-b153-502f-8b5d-3d639c939ff0", "id": "CVE-2025-55303", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55303 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:305432c8-bdbf-5060-8eb1-0b35d3eb21b5", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fdf5dea-db84-5433-be66-c15a00cdfae9", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd43f3c1-ac29-5cd2-a8c6-d3fbd37b9ae4", "id": "CVE-2025-61925", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-61925 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e147e9e-e483-5f32-9306-908a90eb4c74", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ede3274-2001-5de9-891d-ab7cc0941afe", "id": "CVE-2025-64757", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64757 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:319b1ca4-2f1d-5cf4-a0ca-98cdcfad5845", "id": "CVE-2025-64764", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64764 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7bc4fcb6-5cfe-530d-9c2c-af7ef3cac1f2", "id": "CVE-2025-64765", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-64765 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12f8a6d7-4810-55b1-8e36-a2391182468c", "id": "CVE-2025-65019", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-65019 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef20866c-1f3c-5abc-847c-5c190e42ffd4", "id": "CVE-2025-66202", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66202 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bb44724-ae2a-5a18-a45e-bf4d6cc6d5d5", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18cf3013-beb5-5b8a-9678-831866097ea4", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8835b5c-373e-5dcb-afc7-e4a4fb857169", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f48ad441-4ae1-537f-8481-1a1d183a3669", "id": "CVE-2026-41067", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41067 is fixed in version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b58cf7b3-1dcc-544e-99cf-a2a53ca2bb60", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 0.26.1-tuxcare.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1-tuxcare.1" } ] }