{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:12a31292-7871-5ba5-bba7-cd8fa04f446d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-font@13.5.11", "type": "library", "name": "next-font", "version": "13.5.11", "purl": "pkg:npm/next-font@13.5.11" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:de8c0c0d-45ea-53c1-b308-cd7bb44176a4", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:c41715a0-2322-532a-83c5-8e0a818e593a", "id": "CVE-2026-26996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-26996 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:f3a36585-011b-53a0-be97-ee218e752254", "id": "CVE-2026-27903", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27903 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:06cf8ada-2be9-5b17-82c4-1a72e3a08d4a", "id": "CVE-2026-27904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27904 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:2e1ab07a-4517-562b-9735-4cdf1d983020", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:218836be-b948-5437-8db2-2d3f48a5bc2d", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:3e683fb1-1e44-5432-9b2d-b2ae97d5780a", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:ae65aa4c-f16f-5649-b373-39f5e082562d", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:855b2855-4c26-5b77-a36d-7cc2371d4381", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:dd0c3d1c-146a-538f-9a9b-a837fdf365ec", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:c662aa0c-c4be-5a26-99fd-ff933f25b6d4", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }, { "bom-ref": "urn:uuid:cd1f2726-b6aa-5d20-b6f8-cb9ebed7b501", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 13.5.11 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@13.5.11" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-font@13.5.11" } ] }