{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b84f8d2b-3fa2-50cf-80df-36c79a6ccdc2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1", "type": "library", "name": "next-bundle-analyzer", "version": "14.2.35-tuxcare.1", "purl": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ff7b7931-f3b7-5603-98e5-6e523f9b72cc", "id": "AIKIDO-2026-10095", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2026-10095 is fixed in version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:275d28f5-4f1b-54ea-87de-b172e4a1f16e", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:270e7c60-350e-5024-bd42-996479fe5156", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90588d48-027e-5f10-8c81-a1a5aabf9825", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28f4788a-3b8d-5902-b1b4-e6ecfc809ba6", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a998a068-52e3-5a2b-afd6-e21bfdf15b09", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c35e135-b79e-5d5e-8a81-85845e123adf", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1806cf32-cb0d-5d9a-ac8d-51bd514919a8", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af71b2d0-47fd-54b8-9df4-ae289cb02b76", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:704c151c-d7d5-5be3-a7a1-7e83ea354fab", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a2f058b-4162-5ca1-8bb1-07971a04ec5b", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8d2226d0-1975-5d2c-8035-e680871c3165", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff75ce9b-d568-5c1e-8304-4431397e3243", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edd0a41d-d1a8-58e0-acad-12a47baf239d", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1536fae-02a5-5e65-92c3-b331e3f40c8d", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb04822b-1ccd-5648-a588-a0fe074c166d", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e41ad7b8-8afe-5294-a7d2-72420a049b69", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3975ba84-2adb-5052-b5d2-c6d4d5aa82da", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:179ffc15-370e-55ad-b4d6-c99da35122df", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad0eede0-bf5f-540a-b9ee-76c187f771f5", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35-tuxcare.1 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35-tuxcare.1" } ] }