{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6a6650f6-ddc0-5216-b963-db36526f1b82", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-bundle-analyzer@14.2.35", "type": "library", "name": "next-bundle-analyzer", "version": "14.2.35", "purl": "pkg:npm/next-bundle-analyzer@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:36504795-b10a-51c8-b35a-a1e0b7d08ff8", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:c2ccefdb-afb1-5420-a827-9654be9c66a5", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:aac85f67-16cb-5367-823a-8f38900a16f5", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:243125dc-e5b4-5bc7-bed2-3d537bf8f098", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:6ff77f54-0ff0-59b8-98e5-cbd29068a9eb", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:e42571ff-19b8-5aed-91e1-8142c29985ab", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:efee5381-5b0c-53fa-a294-2a8ae10f093b", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:9ec942f1-9d44-5a36-8293-09b601bba0e3", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:9c4283b9-4624-5e1f-a957-600c8c1a96be", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:477f7854-cf39-57d6-bb7d-940d7f0f52de", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:fa3139ef-2a28-59e7-8ff9-9b0682bd0a5a", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:dd85380a-b122-54e7-872b-51ad45f47fec", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:0818b466-74fd-5756-8e76-2b16144b672c", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:fec6c49b-4283-5818-a0b2-9effa05e3152", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:fb6d8f21-0ca6-591b-a3ee-bee192740952", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:d6488155-f057-53b7-99fe-c21cefe360ac", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }, { "bom-ref": "urn:uuid:5211349a-d1b9-59be-8a16-dbef7e9c0e53", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of next-bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-bundle-analyzer@14.2.35" } ] }