{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:78eab414-bbc8-5cd0-9e1a-6ad348379d5c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/create-next-app@16.0.6", "type": "library", "name": "create-next-app", "version": "16.0.6", "purl": "pkg:npm/create-next-app@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:50b6f84c-1018-5852-98dd-34e0114917fc", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:46b1983a-1fbb-5f2c-b6f2-2d735e699ed2", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:112980ed-b3ca-5bcc-9315-e5c882f2c95c", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:c83f56e1-7a68-5e4c-acb4-19ff7fa535de", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:dca2d90b-6005-5407-8462-5be7ff69dcd0", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:1fcfec26-21b3-519d-b76d-5f27c994b71b", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:9a2fc7e7-aeef-5cc1-82e6-2fd75aeef088", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:03afa89f-0548-57fb-abed-2c6a72c547e3", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:1a7e3965-d115-5c1c-8585-0988adda3ad8", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:ec0e3c65-00b6-50b9-ba67-f988605d03ca", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:9b5c4e19-f5df-57c9-9f92-e69443e04dbe", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:168e0df8-bbb0-5402-944e-cb756868d659", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:e0f05454-b873-52cc-a85e-dc485201e156", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:12d7a9e8-35a9-5d9d-b9d5-889a8d00f567", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:a2ad7c7a-6697-5d14-9c4d-de5446fc13cc", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:a719d20b-c08c-5293-813b-28b4cb5db60b", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:d1a07340-6af2-53de-9422-70e6faa1e4a8", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:7346437b-5649-54a9-888a-54b650996c08", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:7a15541b-df8d-5a5c-8462-a33eef897f41", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:f725f7cc-5934-5bf8-a8c9-fc6ef15fa398", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:1df91829-c012-5b7a-a26c-c485f26138e2", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:eb7dfc82-9d31-5ca0-ab80-22299a58930d", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }, { "bom-ref": "urn:uuid:b6dbea85-5389-502b-a557-9175e10a5475", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of create-next-app." }, "affects": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/create-next-app@16.0.6" } ] }