{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:21682926-a439-55bd-b9b8-a464f6009f6d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@0.18.1-tuxcare.2", "type": "library", "name": "axios", "version": "0.18.1-tuxcare.2", "purl": "pkg:npm/axios@0.18.1-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f3e423fe-f63d-51d0-a1eb-a5762ee73556", "id": "CVE-2020-28168", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-28168 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b50d7edd-1168-59bf-90c9-ea4e1135fd47", "id": "CVE-2021-3749", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-3749 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06133f01-0486-5d45-b755-d8f97ae28584", "id": "CVE-2022-0155", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-0155 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3abda878-eea5-56b2-b3f3-6f0ea46421f1", "id": "CVE-2022-0536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0536 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0526d33d-017d-595f-a260-04aba27d94dd", "id": "CVE-2023-26159", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26159 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19cfbd42-a32a-55a3-8ed3-78817bed91a1", "id": "CVE-2023-45857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45857 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:292cf4b5-7e06-5d4d-b7ea-32f27bba2d8e", "id": "CVE-2024-28849", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-28849 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e61a3fba-1ff0-5d8a-bef0-8e3a94014291", "id": "CVE-2024-39338", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-39338 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb187a07-1bfc-5f2d-bcf3-85604fabf834", "id": "CVE-2025-27152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-27152 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d803314d-92c7-50dd-9801-5d1e73aced68", "id": "CVE-2025-58754", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58754 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21b950b7-c9a4-5687-9c77-0d4b5512ff45", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fba63c5f-0d7f-5cfb-b681-90659b7ff237", "id": "CVE-2026-25639", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-25639 is fixed in version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77d7bb3b-4469-5c3f-8784-f77e4905cd6e", "id": "CVE-2026-39865", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39865 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43d6d860-7d66-5e80-b86e-7e3cb7bdb483", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6643494-c73b-52cd-8296-ad1f75a46316", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a5ce445-0646-55a4-a53a-52679584356d", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56ac6ae6-38d5-5256-9dbd-1322a4a83f65", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fde49afe-d3b4-5a60-985f-fb6538095993", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef840e5c-e54f-596b-b0b7-15ed422b852a", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:742ff99c-b38a-58ae-a924-ec17acb4761f", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c1156b4-c876-5555-bde6-7207dd9fba75", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d37fe82-d165-57ba-85a0-82e12d4d9254", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:605bcb1d-0e5d-5863-a14d-404454e00c4a", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f969a2eb-6959-52cb-9151-aab54dc4e04d", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1206c31a-6637-5f3b-a8c9-9f1a163eb5a5", "id": "GHSA-r4q5-vmmm-2653", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-r4q5-vmmm-2653 affects version 0.18.1-tuxcare.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@0.18.1-tuxcare.2" } ] }