{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:ce551996-8df7-5c67-9216-3a02727566fc",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/handlebars@3.0.3",
      "type": "library",
      "name": "handlebars",
      "version": "3.0.3",
      "purl": "pkg:npm/handlebars@3.0.3"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:0c1b8fb4-2ee8-549d-a710-b77539df81b2",
      "id": "CVE-2015-8857",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2015-8857 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1f9ff75c-93ca-5c97-b1d5-b2c14d53ccd8",
      "id": "CVE-2015-8858",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2015-8858 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e1dcea36-b507-5310-9065-18cde3b93e90",
      "id": "CVE-2026-33937",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33937 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:26b934d8-0736-5464-81f9-d620cda57cc0",
      "id": "CVE-2026-33938",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33938 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:23e25509-b25d-5686-8a57-dbd26390e88b",
      "id": "CVE-2026-33939",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33939 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:83ad0db5-7de4-5539-b4b8-d6a2075c73f9",
      "id": "GHSA-442j-39wm-28r2",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-442j-39wm-28r2 affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6ff2d60f-14e8-582e-817b-bf348bfcb32b",
      "id": "GHSA-7rx3-28cr-v5wh",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-7rx3-28cr-v5wh affects version 3.0.3 of handlebars."
      },
      "affects": [
        {
          "ref": "pkg:npm/handlebars@3.0.3"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/handlebars@3.0.3"
    }
  ]
}