{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e2a20320-6166-5efc-8d71-e20513c28723", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-env@12.3.7-tuxcare.2", "type": "library", "name": "next-env", "version": "12.3.7-tuxcare.2", "purl": "pkg:npm/next-env@12.3.7-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4fbc8a0e-7977-5d6f-b3ab-66197d761698", "id": "AIKIDO-2025-10854", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2025-10854 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25d71908-2505-5129-b869-434d2feaee70", "id": "CVE-2023-46298", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-46298 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61dc96e3-5b8a-5f8b-9ef9-1ac20c718c7b", "id": "CVE-2024-34351", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34351 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe1806f2-2db5-550d-97af-369795789e20", "id": "CVE-2024-47831", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47831 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77762b33-bf95-53de-80bc-9321d0603efa", "id": "CVE-2024-51479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-51479 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:efbde07e-c72d-5401-a3b5-76d465f93f6e", "id": "CVE-2025-32421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-32421 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbb1621b-5f74-59d5-8ade-a9adb1536663", "id": "CVE-2025-48068", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48068 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4facafb7-7c7e-5283-91c1-7c805ece4ce9", "id": "CVE-2025-55173", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55173 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c275536-5f14-5be8-bc53-12412de82e9b", "id": "CVE-2025-57752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-57752 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79d98afc-b426-5c2e-8d13-b865f7d9c04a", "id": "CVE-2025-57822", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-57822 is fixed in version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dfe92dc4-f04f-5610-85b0-88085b20ef6a", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c883171e-6765-581e-9d3a-3a56543e22ee", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:296550c4-31b3-579a-812d-5585115c4c92", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f018e5d-6da5-5a7f-b524-63749f79ee50", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e0f1ba8-73da-51c7-9f97-99744422ef42", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36af4420-5922-5bfc-b82d-f8a4d9f3844e", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1facd101-c1b1-5981-9b55-009c28b4f093", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 12.3.7-tuxcare.2 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-env@12.3.7-tuxcare.2" } ] }