{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:bdf0279f-2b00-55ee-b1ea-36f31b0db49a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/loopback@2.42.0-tuxcare.2", "type": "library", "name": "loopback", "version": "2.42.0-tuxcare.2", "purl": "pkg:npm/loopback@2.42.0-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:52a8a9f0-d104-5a45-b90d-2a0d965f358c", "id": "CVE-2020-7769", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7769 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:263f95a4-f209-528a-b121-6d5757494cdb", "id": "CVE-2021-23358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23358 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9149bf20-a2f8-5571-93d1-129d7017fc32", "id": "CVE-2021-23400", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23400 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11ca3daf-eeb8-5e55-9a34-3aef05c683b3", "id": "CVE-2022-29078", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-29078 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:29f7f2df-3866-5b92-a03c-5380446562df", "id": "CVE-2024-29415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29415 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b5055d9-fdef-5dc7-8625-8ae7470bcef9", "id": "CVE-2024-33883", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-33883 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:03239507-a837-5d27-b941-927c0b449d19", "id": "CVE-2025-13033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-13033 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e34d1bcc-19db-5893-9c6f-2bcb4fa69060", "id": "CVE-2025-14874", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-14874 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2691a44-0aec-535f-a8a1-8ba66057927f", "id": "CVE-2026-27601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27601 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf424ac6-6dc3-5a4c-aca4-b133f7df12ef", "id": "GHSA-724c-6vrf-99rq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-724c-6vrf-99rq affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0382ec69-a880-5cef-b3eb-c2150c3f1aa5", "id": "GHSA-8wgc-jjvv-cv6v", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8wgc-jjvv-cv6v affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96c24c06-c9bc-5433-8d02-e610bc575174", "id": "GHSA-9h6g-pr28-7cqp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9h6g-pr28-7cqp affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0c279d3-5d16-57c3-9a62-b43bda392e10", "id": "GHSA-c7w3-x93f-qmm8", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-c7w3-x93f-qmm8 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99f0a968-37b3-552a-baa9-a472d9202180", "id": "GHSA-jj37-3377-m6vv", "analysis": { "state": "false_positive", "detail": "Vulnerability GHSA-jj37-3377-m6vv is a false positive for loopback 2.42.0-tuxcare.2." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c33a37fd-a00b-5b70-b919-f049f139d5a0", "id": "GHSA-mm7p-fcc7-pg87", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mm7p-fcc7-pg87 affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:60d90243-d2d8-5552-aaae-ea0bbfd48473", "id": "GHSA-vvjj-xcjg-gr5g", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-vvjj-xcjg-gr5g affects version 2.42.0-tuxcare.2 of loopback." }, "affects": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/loopback@2.42.0-tuxcare.2" } ] }