{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c0e3cc11-d2bf-5602-b242-54f5518995a5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/firefox-profile@0.4.0", "type": "library", "name": "firefox-profile", "version": "0.4.0", "purl": "pkg:npm/firefox-profile@0.4.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:97596e3b-7c1e-5a8a-8f68-7afe7518fd76", "id": "CVE-2018-16487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-16487 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:2b5784ed-9f46-5efc-9907-1242ea5d949b", "id": "CVE-2018-3721", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-3721 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:76074753-41e8-5bfe-904b-97049c841c16", "id": "CVE-2019-1010266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-1010266 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:ee9b7889-fad1-5e91-b2be-f0f00af8a9bf", "id": "CVE-2019-10744", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-10744 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:791c5215-b574-59be-8466-01c13e52387e", "id": "CVE-2020-28500", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-28500 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:c630e960-f851-59b6-bfeb-e6953b3e2516", "id": "CVE-2020-8203", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-8203 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:05412053-3414-5c92-8943-b52aedfadd1b", "id": "CVE-2021-23337", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23337 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:31276f32-d88f-507d-a7a3-380d185262bd", "id": "CVE-2025-13465", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-13465 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:0d5a520d-3668-56d0-b3b9-b49dc3765399", "id": "CVE-2026-2950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2950 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }, { "bom-ref": "urn:uuid:8a2653dd-70db-5886-a38e-482a6f7b8aa6", "id": "CVE-2026-4800", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-4800 affects version 0.4.0 of firefox-profile." }, "affects": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] } ], "dependencies": [ { "ref": "pkg:npm/firefox-profile@0.4.0" } ] }