{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4c74f1d3-157e-5c25-8ae2-4dff7bb26a0c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2", "type": "library", "name": "next-rspack", "version": "16.0.6-tuxcare.2", "purl": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9068de61-a87f-5707-b501-6aef0cf9a097", "id": "@base-ui-components__react@1.0.0-beta.1", "analysis": { "state": "exploitable", "detail": "Vulnerability @base-ui-components__react@1.0.0-beta.1 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b462e65-8b53-5a3f-ac82-19532f7d7e5c", "id": "@types__node@20.17.6", "analysis": { "state": "exploitable", "detail": "Vulnerability @types__node@20.17.6 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3633064-35e4-5fb0-8ca0-0aec8b063985", "id": "CVE-2025-55182", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55182 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe55d989-cfa6-552a-8950-69f2b50ac90c", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9fd9eb2c-7002-5355-b3f9-698ca6b2b413", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50e779f5-b8dd-5ed4-8d19-21aad926b52e", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:857be5c6-b269-5e5d-be5d-3ba0bbcaacd9", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c72f2e7-8c0a-5bcc-bb51-80d4e8f35e3f", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8dae3c51-7336-54e2-8605-9c024c794b2b", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:baac5c67-6c11-53c4-8911-936d2fc95e05", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:674c8677-241c-52fb-b2f2-8784116cd58d", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4b7e9c9-2895-5aaf-b2cb-5ebd74240c18", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c193bf54-34a9-51a4-8405-1b8bcb773962", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:358c1472-d880-5e8d-be0d-90634cbd2c23", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f25f22d-f0c0-516a-83fd-40639fcf8d77", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73f14170-d661-59d7-ab00-f269534c6c96", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ab7c272-f39a-509d-ae49-4326f897bf7f", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cdeb640d-f037-5a51-a458-fb43df37c2ee", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c32531ab-28cb-5584-b9ec-d4711cdb2c85", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb323a3f-dd63-58c2-9112-db3811115bd2", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6639c576-862b-558c-8333-57ea2938f542", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:365deee6-dee9-5cb4-9b3b-29a12416ef7e", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c77a6e6f-3862-5cae-9a7f-88be28ff1e96", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:95e0d4f5-ed72-5d14-ad09-a8ef03f4d3bb", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77ef7365-7047-5c93-ba4e-d92606aee756", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd7e073f-9f11-5caf-b0c8-c891d7643143", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5965d1fe-3e0d-5809-8cb0-c2440c0a2459", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59e0674c-9ad2-5a5e-b151-4838ebf29c06", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a03efd4f-f4f0-5dcb-9675-0de7ae269bc8", "id": "stacktrace-parser@0.1.10", "analysis": { "state": "exploitable", "detail": "Vulnerability stacktrace-parser@0.1.10 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e94e0d1-f66d-5846-99e2-994e73480334", "id": "taskr@1.1.0", "analysis": { "state": "exploitable", "detail": "Vulnerability taskr@1.1.0 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d31a163-ed90-53d3-beaa-929d1bd8736d", "id": "webpack-sources@3.2.3", "analysis": { "state": "exploitable", "detail": "Vulnerability webpack-sources@3.2.3 affects version 16.0.6-tuxcare.2 of next-rspack." }, "affects": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-rspack@16.0.6-tuxcare.2" } ] }