{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:65fc595c-9d4c-5389-94c8-2b41dce20ded", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/body-parser@1.8.4-tuxcare.1", "type": "library", "name": "body-parser", "version": "1.8.4-tuxcare.1", "purl": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:59cb7255-97cb-5983-bd06-940dc9b43f85", "id": "CVE-2017-1000048", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-1000048 affects version 1.8.4-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b17b89c8-2223-5593-8917-622c40b20b02", "id": "CVE-2022-24999", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24999 affects version 1.8.4-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e8a6162-6d59-5d88-a912-0d1ab8e5b1e3", "id": "CVE-2024-45590", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45590 is fixed in version 1.8.4-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e5904a0-4d0c-54a6-a58e-ea48509a955d", "id": "CVE-2025-15284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15284 affects version 1.8.4-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f65e631a-c3d5-5be4-95b4-08df5bcadd5a", "id": "CVE-2026-2391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2391 affects version 1.8.4-tuxcare.1 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.1" } ] }