{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2b419411-f51c-5a0d-ba92-d92ca529ae44", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-env@14.2.35", "type": "library", "name": "next-env", "version": "14.2.35", "purl": "pkg:npm/next-env@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e8aa7e78-d19e-5eca-afc7-ce580f6f4b9d", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:37b00b36-90a5-5c18-b799-f06f25386c3b", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:2b87e475-7d62-568d-b2bd-f5f2da066059", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:4be04783-d707-5026-bf82-0b581effe1cf", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:036388be-3fdf-53e8-8856-70e97a2d56bd", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:d8c5bc43-5b64-5067-99f2-e8d1b2a91b13", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:e50f88c8-7ba6-56cc-ad5c-b67f2da37eeb", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:5a0a9fef-db79-533b-aa86-76580d241580", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:147d9002-8558-55f4-9a68-83ddf74959f2", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:9abe7663-090a-5ca4-b999-41791536ac90", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:d77240a5-a541-5765-bc3a-592c8f1b7fab", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:ab453f10-cae0-5f4f-b1d2-f315908e91ce", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:07f3737d-98fa-50de-a5a1-aa0d21e7724b", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:d24987d8-d7e7-5717-a653-777724549235", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:b7fcb2b2-9fe6-5327-b635-4d41bcdfcd4c", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:4f3bc0f6-d677-561c-8bf6-422f257e0853", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }, { "bom-ref": "urn:uuid:aa4a5284-14f1-5034-8358-1ee14031ad89", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-env@14.2.35" } ] }