{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:afec9354-640a-5a76-a284-3ae9c879e58a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-font@16.0.6", "type": "library", "name": "next-font", "version": "16.0.6", "purl": "pkg:npm/next-font@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3bf9542a-c5ff-5303-87d6-5dbc6261e6a2", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:0691a9f8-ca16-5fcb-879a-de3f7e8a3b03", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:28e76992-f5f1-5ea0-a483-5fa585ef71a6", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:4bbdf567-2b3e-5bb8-bc1b-eb97b155db11", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:c0311e9a-a26f-588c-9627-64c41beeb70e", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:2d06453e-bee1-5986-b492-671fc7ed7560", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:dd6f37d9-52ff-5acf-9ca1-fbfe17d79b9e", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:969b3f8d-874a-590c-bac8-650e8f3ce430", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:ac0478f9-7293-56ad-a2fa-517585f6d2ce", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:f54f947b-64a2-53df-8075-246ea0c49626", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:7ae5dada-e96c-5441-a93d-84da4779d04e", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:dfb69bf9-0a5f-54a5-8772-d581ddb83fb2", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:8cb63c71-db96-518e-8955-54a9a4383927", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:ebcafcc0-9acd-5c6c-b667-9afdc9962f17", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:b80cb12f-5e99-5140-b9f2-78d01d32dff5", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:8a7e5172-04fd-5072-9a37-7664ce7f8831", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:93ceae79-cc37-5c76-a1ae-4aa3b230e845", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:69543c0d-6f96-5e5a-813e-e43a486d2755", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:a7c8fbf4-5fe0-5422-8cb6-cf6abc0929cf", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:d18c999e-a92a-5296-b559-1e943d0a2768", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:06f556e8-be4e-5126-b5e6-5edd23a3b1dc", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:7641e7b0-622b-52ab-9bbe-59927aaade8c", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }, { "bom-ref": "urn:uuid:79e06802-6928-51f0-a6ac-13968f1f8a4c", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of next-font." }, "affects": [ { "ref": "pkg:npm/next-font@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-font@16.0.6" } ] }