{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b0de13a4-2afe-5210-b131-7d6d912dabf3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/astrojs-webapi@0.26.1", "type": "library", "name": "astrojs-webapi", "version": "0.26.1", "purl": "pkg:npm/astrojs-webapi@0.26.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f03098df-d659-5874-a1bf-270432b5abe1", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:2f968546-4e49-5507-8516-857f409df122", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:496005ba-0738-5678-9c78-bd578bed98d4", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:2a9bc65b-f24f-56f8-93dd-d1240a8234cd", "id": "CVE-2024-45812", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45812 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:6590511d-b6a3-5c26-b87f-7187149579fe", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:8111759c-fd8f-5c62-bec7-4eb9f4e3bfa3", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:661341a5-2d59-5bd5-8dae-edf07ee03613", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:b142513e-6ce5-5580-85e4-55d9be17f628", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:a4afee40-c0fc-5261-850a-56a1313d805a", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:e5abc3c6-cc94-56d9-9cb2-f3794782de76", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:72a60035-15b8-57e9-8a7f-85d920b4a282", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:a92d15ab-dd8e-57de-bed2-dd5108456eef", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:f9676378-aea8-52d5-8e2b-68cd09b489e3", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:17665448-cf5d-5247-b885-f8a1164a073b", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:41793925-6196-5741-8bdf-409e4c64e670", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:0afaaae6-d3b5-5679-b4e6-87f6b3504757", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }, { "bom-ref": "urn:uuid:d22d8ce5-115b-54f6-96d3-960268ff34a9", "id": "CVE-2026-45028", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45028 affects version 0.26.1 of astrojs-webapi." }, "affects": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/astrojs-webapi@0.26.1" } ] }