{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:ecee7edf-a9c7-5d87-9500-183036fc74ee",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/connect@2.7.5-tuxcare.2",
      "type": "library",
      "name": "connect",
      "version": "2.7.5-tuxcare.2",
      "purl": "pkg:npm/connect@2.7.5-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:a2be8ba3-e1d2-5651-b1d7-5f5f3d565891",
      "id": "CVE-2013-7370",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2013-7370 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e9cda4c0-4dd3-591f-822a-e76db2500a56",
      "id": "CVE-2013-7371",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2013-7371 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ec66f758-b8b8-5754-9e01-86d99325024f",
      "id": "CVE-2014-10064",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2014-10064 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:72af503b-599c-58d4-83dd-58fade308ec4",
      "id": "CVE-2014-6394",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2014-6394 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c5fa242e-5120-5f52-b3a3-7efc383bbc56",
      "id": "CVE-2014-7191",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2014-7191 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a1bd9ffb-a646-5140-9109-a43058367fce",
      "id": "CVE-2015-8859",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2015-8859 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f2a0f582-a0a7-5973-ace6-d1806c1ed8f3",
      "id": "CVE-2017-1000048",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2017-1000048 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:11569090-9436-5fd0-8a0e-92bb3bed4baa",
      "id": "CVE-2017-16119",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2017-16119 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:28e3d110-1168-5b10-a6d3-8c4eb2dd30c6",
      "id": "CVE-2017-16138",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2017-16138 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b377e369-87df-59bf-a309-35610ecf3bbd",
      "id": "CVE-2018-3717",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2018-3717 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:60411f05-d688-5de4-92d1-1bc452fcd9d1",
      "id": "CVE-2022-24999",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2022-24999 is fixed in version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b04c2bfe-6b71-5272-874e-8078f9b63608",
      "id": "CVE-2024-43799",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-43799 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:47949cc5-56bd-5e1f-81a7-97187790603a",
      "id": "CVE-2025-15284",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-15284 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5a08cec0-f886-5a31-9ab6-a9a230d96331",
      "id": "CVE-2026-2391",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-2391 affects version 2.7.5-tuxcare.2 of connect."
      },
      "affects": [
        {
          "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/connect@2.7.5-tuxcare.2"
    }
  ]
}