{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ad4e03d4-30c1-5072-943e-8315106e6af6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/follow-redirects@1.5.10", "type": "library", "name": "follow-redirects", "version": "1.5.10", "purl": "pkg:npm/follow-redirects@1.5.10" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6a8e64ae-e82e-51f7-b517-2ea0234c4e5f", "id": "CVE-2022-0155", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0155 affects version 1.5.10 of follow-redirects." }, "affects": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] }, { "bom-ref": "urn:uuid:426c814a-2555-54ba-b4ef-9faf6ea0606b", "id": "CVE-2022-0536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0536 affects version 1.5.10 of follow-redirects." }, "affects": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] }, { "bom-ref": "urn:uuid:19bce3a6-930a-544f-8e70-02cd97661bd0", "id": "CVE-2023-26159", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-26159 affects version 1.5.10 of follow-redirects." }, "affects": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] }, { "bom-ref": "urn:uuid:d3fd952b-76dd-548c-b126-db0af19cac41", "id": "CVE-2024-28849", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-28849 affects version 1.5.10 of follow-redirects." }, "affects": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] }, { "bom-ref": "urn:uuid:545f7fcf-97d5-5b06-8c37-6317d1dad6b0", "id": "GHSA-r4q5-vmmm-2653", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-r4q5-vmmm-2653 affects version 1.5.10 of follow-redirects." }, "affects": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] } ], "dependencies": [ { "ref": "pkg:npm/follow-redirects@1.5.10" } ] }