{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a928fc18-a422-55ad-ba64-f7338949bc74", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@1.7.9", "type": "library", "name": "axios", "version": "1.7.9", "purl": "pkg:npm/axios@1.7.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:72d29bb5-bc67-52c6-9c33-9c0ff0ada7c5", "id": "CVE-2025-27152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27152 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:6d128cc3-cc00-581a-9394-5a6ce5d67904", "id": "CVE-2025-58754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58754 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:2523b51d-d000-5be5-a1d7-9f32ba242b39", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:cc0e930c-6b9a-5bcd-aab6-3cee586f49fb", "id": "CVE-2026-25639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25639 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:59f22528-7a4d-5ffb-af64-93ddbbb2cf7a", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:9c61077b-bfa4-507e-9667-894024813aec", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:afbd9c18-de86-5819-86b5-4f8f6a4aff87", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:92a8980c-d6bf-5a03-ae57-51f77bbaa538", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:7c1866cb-2b60-5773-bd7a-b9fc822d0549", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:04125cbc-5aa4-55d5-b7b2-d7da72b7fcb9", "id": "CVE-2026-42037", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42037 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:87e4f63f-971c-5f75-b699-99a4746ef9ec", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:50735a93-e210-55e0-812d-a2f818702306", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:f4456d20-81bc-58b9-b6b9-9ce993f3c4ac", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:fecd48dd-0401-516d-87bc-72280ccb271e", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:c4079d5e-83c2-556b-9f78-e6fdd783fb78", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:53d00b00-0715-573a-87d8-547ae1e2d5c3", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:818492a0-a978-55a1-b6c6-2fa8573b5d6b", "id": "CVE-2026-42044", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42044 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] }, { "bom-ref": "urn:uuid:48d19f80-1da5-509d-bd68-0a1e0b74d1f7", "id": "CVE-2026-42264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42264 affects version 1.7.9 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.7.9" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@1.7.9" } ] }