{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:619fe88e-875f-5c43-b1f5-b0bce427550f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@0.27.2-tuxcare.1", "type": "library", "name": "axios", "version": "0.27.2-tuxcare.1", "purl": "pkg:npm/axios@0.27.2-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:95e8b80b-a30a-57a2-aaf5-9421a5b9b7e7", "id": "CVE-2023-45857", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-45857 is fixed in version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b017c5b7-2645-554a-a1c7-8fd6d6dbccfb", "id": "CVE-2024-39338", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-39338 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b9a69c2-2402-51e4-90f9-c342e7de4961", "id": "CVE-2025-27152", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-27152 is fixed in version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0123117d-9332-5400-a950-1bba2cf9e1cb", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bb6e4e6-07d6-5faf-8133-60ece09b4c2e", "id": "CVE-2026-25639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25639 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:174584da-b347-56f4-b009-e8f99d6c5714", "id": "CVE-2026-39865", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39865 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b9c4912-adfb-50ae-9c19-e7cf4bd0a494", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b91218de-0664-5aab-ac2c-0d093ac755b3", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4608d7a-a01b-5ef6-b46f-d28752b9c86a", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f5534acf-6bdf-56f8-bb3c-a645c6ccd518", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc80ca40-885c-58fd-b05e-29f9d78775c2", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5dbfbc00-21bf-5dc8-a725-b1ab96a19c34", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91b8a7d9-fc7f-5860-99cc-07a38af622ec", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47830f84-d824-5985-a29d-146b7f367299", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0f25bc1-e49d-50b4-9a7a-4b1c1b97b793", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21f49afd-8aec-5078-bbad-fc206f8d69f1", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c83cc2a9-f1e6-5e84-8b5c-2c5214a9fd06", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 0.27.2-tuxcare.1 of axios." }, "affects": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@0.27.2-tuxcare.1" } ] }