{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aa16d019-6669-5630-8427-11e3f297f5d0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/body-parser@1.14.2-tuxcare.2", "type": "library", "name": "body-parser", "version": "1.14.2-tuxcare.2", "purl": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:590d4681-2100-551e-af67-c1b951a86805", "id": "CVE-2017-1000048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-1000048 affects version 1.14.2-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f440b16-3a50-5316-868c-73351c32dd83", "id": "CVE-2022-24999", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24999 is fixed in version 1.14.2-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87c65904-42bf-59a4-91ef-09756ec3efab", "id": "CVE-2024-45590", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45590 is fixed in version 1.14.2-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4c075fdd-5dd7-544c-9d5a-6bcc37170ace", "id": "CVE-2025-15284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15284 affects version 1.14.2-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef2f57c9-8510-5e59-8343-b8aa73f240b0", "id": "CVE-2026-2391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2391 affects version 1.14.2-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/body-parser@1.14.2-tuxcare.2" } ] }