{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aef0907f-bedc-5405-b30f-ab869af813a1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-mdx@14.2.35", "type": "library", "name": "next-mdx", "version": "14.2.35", "purl": "pkg:npm/next-mdx@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9d49e605-29db-54aa-9f4a-f4709a8fe928", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:ea9f2706-457d-5741-a49c-0b7cc62ec62a", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:106ba1af-564c-566d-aca5-ef7838711c53", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:9e890249-f30c-5c3d-be3f-acb2c5fab6ad", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:0f997733-aa34-55a9-8f67-8c08f9043ddc", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:3e8e6f71-146c-5798-a16c-61f76948119c", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:140fbbe9-5bc5-5f06-bbb7-df16632ebff1", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:0dfe63c0-93bc-51a2-8d52-4ee47f96a800", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:fd616be2-783d-5149-a64a-9ed433fdd26b", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:3eb71cba-e19e-5afb-bfe8-288c3bed074a", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:484b3629-12fd-55a2-b5eb-217c682f8ac4", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:91d3e02e-ff79-517b-9686-aefa98ec11c4", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:82e113aa-1259-55d5-a68d-974e584368c0", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:8f5c8211-dd76-58f3-a1d1-fd4d8b9397a3", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:c9bb5919-ad04-56b1-8f85-3908144504fb", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:377e1d21-ccc9-5339-8eb0-fc62780cf5a7", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }, { "bom-ref": "urn:uuid:cabd6aa2-34eb-503a-a26d-6c55b2800b56", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-mdx@14.2.35" } ] }