{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a36411f6-893a-50f2-90c7-5868e0c5d7e2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-mdx@13.5.11", "type": "library", "name": "next-mdx", "version": "13.5.11", "purl": "pkg:npm/next-mdx@13.5.11" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:14b64474-f995-5a18-89dd-47d25d5e94cb", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:d58a761d-235b-58ed-9e97-0a4111f835c2", "id": "CVE-2026-26996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-26996 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:b739aa86-ebd1-5b94-b33e-9e18a1793907", "id": "CVE-2026-27903", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27903 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:00668dbf-9a88-5096-87b8-596e1968779e", "id": "CVE-2026-27904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27904 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:37c039e6-29d5-5330-8dee-85d34ec5154f", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:19d677a0-f196-547c-8ad3-ca8e95d9560e", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:64647b02-431b-54fc-8da5-851f0469edee", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:891f0b34-5dd6-532c-bf03-d3d2cbd2f8c1", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:5c7f6a49-0386-57ce-9394-6b07529ac9e9", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:59bc40cd-0947-5b40-8690-f0b7b97da321", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:9856a80b-7b65-5b6e-811e-2c88def3df17", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }, { "bom-ref": "urn:uuid:44923412-5175-5232-b100-bce8e5405519", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 13.5.11 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-mdx@13.5.11" } ] }