{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:009ecf26-ff82-5363-86fe-0749f6442f36", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/create-next-app@14.2.35", "type": "library", "name": "create-next-app", "version": "14.2.35", "purl": "pkg:npm/create-next-app@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:005bb942-4040-5629-ba13-1b0f68a70a72", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:c15ed089-9999-50ac-92e4-4793ef9327df", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:0ab625b1-67ee-5833-bcba-357e9c21a866", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:55ed1200-b519-50b9-b81f-e7d139daf2cb", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:58935e66-27f6-5941-8538-091ad30c2664", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:308a1f31-9d29-519d-bc94-d1e39be13112", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:82167d4c-eea9-5053-bf77-d8815e795791", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:df4c84c5-d5bc-5439-af0b-79625bdea78a", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:70738c46-64d1-51c6-92a4-67b23e735714", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:591d20fd-c1fc-5d3e-b42c-e218f5684b4a", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:3e8de627-9bab-5138-9ba3-e0d3c18d71cf", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:29733bc0-bf61-5ce5-94ce-50f4d17ad61a", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:b2ca96a2-9b20-5b38-ae3e-b4ed95531180", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:69a3cfe4-5e98-5522-b68c-90cdf93cc62e", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:f5689fbd-0184-5d3a-88f9-cbe09bcf1476", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:eb970a77-daed-559f-84ce-67b64f4eca4c", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }, { "bom-ref": "urn:uuid:acd245e5-2cfd-5f96-b56e-48b8af363d16", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/create-next-app@14.2.35" } ] }