{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:2898eadf-d36c-5bab-a500-3f0873a61a9c",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/jsonwebtoken@0.1.0",
      "type": "library",
      "name": "jsonwebtoken",
      "version": "0.1.0",
      "purl": "pkg:npm/jsonwebtoken@0.1.0"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:801e3dca-9330-5dae-b2dd-7dae69411a92",
      "id": "CVE-2015-9235",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2015-9235 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b17b6011-3b26-5f23-88e3-82a15d7d4fca",
      "id": "CVE-2016-1000223",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2016-1000223 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cedf3fc5-c022-5a08-9075-bb799ac3049c",
      "id": "CVE-2016-4055",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2016-4055 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:879b22bf-e5f9-5c59-b882-5d8ea8966a95",
      "id": "CVE-2017-18214",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2017-18214 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:788fd76c-6ea0-5184-a822-ec3c4fd2058d",
      "id": "CVE-2022-23539",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-23539 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5fe34a32-cba7-5502-881c-8c690eb40b29",
      "id": "CVE-2022-23540",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-23540 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f10bb66a-e765-5691-95cd-e20cd144b4a7",
      "id": "CVE-2022-23541",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-23541 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4ee7971c-40ce-5f47-b11b-d796cdd6ddc8",
      "id": "CVE-2022-24785",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-24785 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d803abcf-4354-5971-8c2e-7de3ed016c6e",
      "id": "CVE-2025-65945",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-65945 affects version 0.1.0 of jsonwebtoken."
      },
      "affects": [
        {
          "ref": "pkg:npm/jsonwebtoken@0.1.0"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/jsonwebtoken@0.1.0"
    }
  ]
}