{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ae70c1d0-4a2b-506d-8fb0-cd0f84f67196", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-mdx@16.0.6", "type": "library", "name": "next-mdx", "version": "16.0.6", "purl": "pkg:npm/next-mdx@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b2ef411d-edb2-5d9a-9e0f-4d0ecf99f37f", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:f6e188a0-761d-526e-a5fb-d53d01329aa4", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:4b813d3c-59f8-5079-acbd-d16ee7918e01", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:33095175-0f3f-5a26-9a16-63fdfce98768", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:c9112792-1cca-5b5a-a726-fe9f8ef69f64", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:870f1134-d372-54fa-9b3e-d3d8d7a9d6be", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:da34da87-25f9-5c1e-b27e-5bc12ed4c3d7", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:abe86b44-5118-5594-8934-fb2b8818619a", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:46430517-fec3-512c-8444-9652df3f3600", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:2e841f8f-5895-550b-b0c9-6dd52353a371", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:c9f35a1c-de44-5ea1-b688-8e7aa5383480", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:6a009c14-0523-5c5e-9f08-0a9a116f74c3", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:bc49766e-43ea-571d-a241-5e423db8a7e1", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:b8c094b6-70b2-5925-adad-470420abf77c", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:90e71f13-b124-54b7-9cf1-87fa33ddce49", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:ab21c555-bf71-56aa-a6d2-fe345c3b8ec7", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:17bd5be0-2260-5740-8758-9c7728bb08ed", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:dd4e08e8-6c41-509b-a339-5914ccd266e0", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:d0b26a1c-9c2a-5126-9a53-94a736f18442", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:ffa10b04-c839-5042-9d3c-30d1bcd383eb", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:43908ce4-4f91-5ed6-b471-50e43d4955fa", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:1cfe24e8-ed17-545e-9187-2a7c9c69243c", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:45f05044-ae17-5b0a-b9f5-59a1fa3d6d19", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of next-mdx." }, "affects": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-mdx@16.0.6" } ] }