{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ffde2565-2571-53bf-adda-12e04b6b47c3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.1", "type": "library", "name": "jspdf", "version": "2.5.1", "purl": "pkg:npm/jspdf@2.5.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c0df4634-9f54-5bc5-914c-66e4560e0a19", "id": "CVE-2025-29907", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-29907 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:a2fb402e-7004-5f3a-ae01-10d232a3bd85", "id": "CVE-2025-57810", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57810 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:11951de3-3edd-5abd-b2f4-72579a9eaef1", "id": "CVE-2025-68428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68428 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:f81be09c-d50e-5d20-8ebf-abf695251148", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:b615a338-f800-5537-b4cf-432ff4edf537", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:3f4dad48-e047-5021-9aa1-4442b3739890", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:04d92963-9359-57e8-80a8-21ea15fdbfc6", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:a1ada545-47fd-5346-9f1e-4068141ba5ef", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:8d1ebf17-63a6-5f71-84cd-4273d597295f", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:47f97388-860b-5cb7-8277-dacb4e2692b7", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:8e7ce919-c4a4-5894-95ad-fa5bac97c7ec", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }, { "bom-ref": "urn:uuid:c47c90f8-7eb4-538c-8292-5b8c91fbd227", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.1" } ] }