{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:105b3ac6-9d9e-543d-ad3b-d0d327488978", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2", "type": "library", "name": "next-mdx", "version": "12.3.7-tuxcare.2", "purl": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e6216aea-e1ca-5cb9-9dd5-7b82238a909b", "id": "AIKIDO-2025-10854", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2025-10854 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2f4e633-0686-5517-9153-2ebb6d016a4d", "id": "CVE-2023-46298", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-46298 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31de1e4d-5fad-5425-8718-bde119ad7393", "id": "CVE-2024-34351", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-34351 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c945e23-51d9-5e92-a781-8329a09f15c9", "id": "CVE-2024-47831", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-47831 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b623fd3d-2df4-5c32-86a5-5a24e98f4b7a", "id": "CVE-2024-51479", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-51479 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5d87dfa-9bfa-5f4f-b16c-e704b2dc93fb", "id": "CVE-2025-32421", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-32421 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2206a539-55db-5c35-ad23-86e71a2698d7", "id": "CVE-2025-48068", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48068 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ea47657-467e-5fe5-b979-588ebd169407", "id": "CVE-2025-55173", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55173 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7d8cdbad-ff67-5f33-be52-0e87dbee6d72", "id": "CVE-2025-57752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-57752 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f9a48c2-1b2e-57ca-9d93-9bfd63ead9df", "id": "CVE-2025-57822", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-57822 is fixed in version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d96d1c13-6f7f-5f30-a8c7-100cf0a627ee", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f9b985c-6a21-55f0-bd5e-59cd6971a26b", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73241ba3-eef1-51dc-8ef7-80c012986127", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6e2eaa8a-5dca-5842-abcd-9b02858a0cf8", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:166d96c6-d910-5c41-acb2-120b296d1a02", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b77212d7-f8a3-564d-ad19-1d0cb7fd40f9", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3fa1480-8663-58a0-ab3a-9c46aabed433", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 12.3.7-tuxcare.2 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-mdx@12.3.7-tuxcare.2" } ] }