{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bebf34a0-9034-52ec-97da-8831a9c19f81", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/body-parser@1.8.4-tuxcare.2", "type": "library", "name": "body-parser", "version": "1.8.4-tuxcare.2", "purl": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a21be03b-43b9-5012-82ee-cd6b3486c2f1", "id": "CVE-2017-1000048", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2017-1000048 is fixed in version 1.8.4-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce072ce5-2d09-572e-b001-6fab696cead4", "id": "CVE-2022-24999", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24999 affects version 1.8.4-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05a63da5-7724-52d3-973c-23fa54181766", "id": "CVE-2024-45590", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45590 is fixed in version 1.8.4-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e86a2fb-7dd3-5a43-83af-20f53ca51e67", "id": "CVE-2025-15284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15284 affects version 1.8.4-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:703ce47c-cc18-5e42-b798-7e51f0f67e7b", "id": "CVE-2026-2391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2391 affects version 1.8.4-tuxcare.2 of body-parser." }, "affects": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/body-parser@1.8.4-tuxcare.2" } ] }