{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fa05dca6-751a-5bca-a2d9-1bcf77278bc8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-env@16.0.6", "type": "library", "name": "next-env", "version": "16.0.6", "purl": "pkg:npm/next-env@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e1b0b314-0386-5867-953d-5ef64de7fe3c", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:e8e87653-20ec-5c49-b022-cb7e8e0c4773", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:b9389f7f-cbe6-5517-8ce5-34740851b94f", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:5e0e3be2-734d-54c9-8038-78cefcf9c8ad", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:cdef795d-4f39-5d5a-9582-2a4ea1443227", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:c5b11c31-f659-5173-874f-b5b83e093e53", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:83f046a9-ebcf-5964-8474-b38a2d77f386", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:33ba3c35-704f-5680-98b5-0fa778172847", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:39c5b1ce-b850-520d-96f7-953d81986b97", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:7899d79c-53f0-508e-a47f-74b7c474eedf", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:c6185235-677b-5a10-8b07-0e1d58640c13", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:100cd6c0-0302-5955-9e3d-f71fc6a61558", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:b17c2e89-1e31-5301-a080-fee84c908a36", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:996be530-1d9d-504f-a4cc-58f67cf68cc1", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:dab99712-7683-5907-a232-2570bff1c36a", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:71e3e888-81a3-502d-8b63-9f0cf99fdfa2", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:2161ba99-8965-5136-abe5-1ec2d5c01d30", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:0ab9687c-4382-59bd-9b79-589e1b623a6c", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:131f584d-3128-5797-93cb-52c85a71be4b", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:648aeb70-9fef-5dde-83f2-67f5b8579633", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:240db71b-feab-54da-8e08-7d52702bdb1d", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:4fb1647e-5ca5-5add-96ab-4e32b05d0b75", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }, { "bom-ref": "urn:uuid:d05af888-5726-5902-8913-8404fc47ddac", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of next-env." }, "affects": [ { "ref": "pkg:npm/next-env@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-env@16.0.6" } ] }