{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f0c008f8-dd16-552c-9149-f5ed9b85aee6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@1.6.2", "type": "library", "name": "axios", "version": "1.6.2", "purl": "pkg:npm/axios@1.6.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:250087c4-9a62-5674-bcea-0d1f2f169f47", "id": "CVE-2024-39338", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-39338 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:d4e9d29b-628e-5b6d-b484-255e6095fa07", "id": "CVE-2025-27152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27152 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:85d16c40-0565-566d-86dd-592342d32c22", "id": "CVE-2025-58754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58754 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:d6f4f932-1c2d-555b-90f9-43bd95edb969", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:31c6f9a5-bab4-584e-98ce-4e1bf21acf92", "id": "CVE-2026-25639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25639 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:bc1c3b86-864c-5fa5-834f-45fa33ae3350", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:69db089d-cb53-54d3-8922-34bda2a26d62", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:8237ce21-f842-5b98-beb8-37f622c1a31c", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:baf360c0-115b-50ab-a972-59de4bde27b8", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:bf84a552-76a0-55ad-9897-003496478a6f", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:48853635-6d63-567f-96fb-a06ccf12e823", "id": "CVE-2026-42037", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42037 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:586a9b32-4c0d-5c5c-a5de-cfb71a8440e6", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:b0d48adc-121a-5988-8a28-f61747cc1fc7", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:fcc7559f-5b3c-56f5-8bf7-0fac2947b1ea", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:76335067-ea43-543c-928e-cbf83214de26", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:0cb83f2a-260a-5bce-905b-79828d4cb492", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:bca452c7-a7cc-5773-b600-396afe8a9204", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:8079240e-c968-500a-8d64-90a403e43821", "id": "CVE-2026-42044", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42044 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] }, { "bom-ref": "urn:uuid:1a81fc52-902f-546c-89d7-05f2c2e51f22", "id": "CVE-2026-42264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42264 affects version 1.6.2 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@1.6.2" } ] }