{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ebe90b6e-c925-5207-bf2d-1cddd3e691fc", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/body-parser@1.14.2-tuxcare.1", "type": "library", "name": "body-parser", "version": "1.14.2-tuxcare.1", "purl": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:39796c64-8e8f-508b-b326-b5396ca90088", "id": "CVE-2017-1000048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-1000048 affects version 1.14.2-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02cdf57d-91dc-5b12-a9ec-b63c730598e5", "id": "CVE-2022-24999", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24999 affects version 1.14.2-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:61b72464-2cb3-58f3-9d94-f46117a8ef04", "id": "CVE-2024-45590", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45590 is fixed in version 1.14.2-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84dd640b-f5f2-53c2-a899-f1813d8803b2", "id": "CVE-2025-15284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15284 affects version 1.14.2-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d19f5a8-bbb8-501a-95ea-49d920e7b0db", "id": "CVE-2026-2391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2391 affects version 1.14.2-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.1" } ] }