{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7f0fd265-8645-551a-954c-7d9ef3dfbca1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-font@14.2.35", "type": "library", "name": "next-font", "version": "14.2.35", "purl": "pkg:npm/next-font@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b8c46319-7a7f-5f96-9fd3-7b01f5b02dd0", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:321f03a4-ed14-5756-8d97-a034fcfef9a3", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:3a28a150-96ea-56b7-908a-f5266561fc16", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:3498c1ab-f331-5adc-8b9a-24fb0717947a", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:60c46769-9785-5c5e-8d82-b7edfba14032", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:b3046498-f784-5fc0-8d1c-5b02a964f6e9", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:6e32a6fe-3c26-510a-ab46-ffe0aff13e98", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:1252ac79-f18e-51e5-a9bf-f115377c989b", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:77923a50-952e-5c9f-920d-11b1b127951a", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:a1f78008-09c4-5594-b2b9-595de8495e0f", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:4fdcae17-8f00-598f-925e-df903a9f7a5d", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:8ecefff7-ac4d-53aa-9f5f-061ab6aa6d7c", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:59193f8d-8175-534e-950c-14218e1ac81d", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:73d4ce7f-5f16-511f-b0da-2cbcfcace808", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:a047df2c-7c58-525e-b482-d3235941433a", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:2ceae24f-9633-508c-83bb-117ba73f1e48", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }, { "bom-ref": "urn:uuid:b1a0a844-9543-53ba-8acb-ad192816197c", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-font@14.2.35" } ] }