{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:74dff977-7b07-5761-9972-fb5413262d68", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@1.7.5", "type": "library", "name": "axios", "version": "1.7.5", "purl": "pkg:npm/axios@1.7.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3304ce3a-3096-5a35-aaec-820165fa5983", "id": "CVE-2025-27152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27152 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:7075445a-f023-5e55-a614-ad435a81edce", "id": "CVE-2025-58754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58754 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:7676a575-08c0-5a98-a851-ad25696cc335", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:1fa8041e-290f-509b-804d-b59ad367f34f", "id": "CVE-2026-25639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25639 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:3e7756c5-3b5e-538e-83d3-5b857998ec28", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:7c4f7814-1784-5648-9650-b981a641941a", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:a7596705-033e-55a0-98f1-33f8293e7815", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:57113ec0-bbb7-5c54-878c-bb7899f27ef2", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:fed14823-04d6-5771-8aaa-1846fd3e61a4", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:1e5f7e1b-2ae4-57e6-9d2c-d125b2b428ea", "id": "CVE-2026-42037", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42037 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:d26aac79-9d0c-5120-bcb2-e4497cad2088", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:c053b0d0-033f-528f-b51c-32528655f0bb", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:97b155c3-06f6-52e2-821e-745dd1cafd55", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:48f00e61-591c-5382-9fd6-04fd5782a152", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:3dfec764-7598-5442-8f7b-0e804a865b7e", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:d46f687c-55bc-5ec0-a8b2-f70d51cdbecb", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:2aeeb580-eb7c-5d31-9caa-8a23f0082e1f", "id": "CVE-2026-42044", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42044 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] }, { "bom-ref": "urn:uuid:9896ca63-42a8-525d-978d-746fcf6fb5eb", "id": "CVE-2026-42264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42264 affects version 1.7.5 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.5" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@1.7.5" } ] }