{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aac95442-4336-5e04-bf0c-3f7618a0e814", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1", "type": "library", "name": "next-mdx", "version": "14.2.35-tuxcare.1", "purl": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:599fff75-0118-5146-a05c-f8e15a551e8a", "id": "AIKIDO-2026-10095", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2026-10095 is fixed in version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fc42a58-0482-5497-b557-f11ecaf403b9", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f69137cf-db84-52ee-975c-f643e6c0deb7", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edf4577d-62cb-553b-9745-d38d6aa550a8", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26e339cc-6db8-5e71-a89b-fdf312481604", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a770ea0-b04c-53e7-9871-f90b4a432dce", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:54168a9c-1d55-50cf-913b-5853911d102d", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42db6481-b1d4-5372-8090-b34c68996e87", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27174906-f3d2-559d-9097-78a02ce26e87", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed7e45bd-c63f-5554-9fa7-a1f7cd9a4ec9", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ac88068-ffb6-5358-b97c-0e038e7a815b", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:360a3062-dac4-5a88-bfa0-7bcda5f0075c", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7e8edc8-af37-5bd1-941e-d5b08e6d07cf", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbe2eaee-0a1f-516f-8624-12605580dfc1", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57551343-17ae-5d75-9ef9-95bea8cb24de", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5b90498-eaaa-5751-9bf3-94c1a723a7ce", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e55d0a3c-8dbd-5294-ad94-899f0d73234e", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9e6ad5d-caf5-57b5-b03c-a54df073df67", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:073fdc02-12d9-58fc-9294-301b433243eb", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22e00b3d-8c81-573c-858b-a725b7ab35d9", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35-tuxcare.1 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-mdx@14.2.35-tuxcare.1" } ] }