{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:03733ccd-724e-5be3-9215-c070a50e3278", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2", "type": "library", "name": "next-third-parties", "version": "14.2.35-tuxcare.2", "purl": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f053ac08-5c43-5345-a995-bcd99b95e533", "id": "AIKIDO-2026-10095", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2026-10095 is fixed in version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af89a35e-5a8c-5230-9b37-0f4282e74e2e", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0e935294-c1b6-5a84-bfdf-d665b4e3159b", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b78a441e-923f-5bb6-a444-8858c9a8abb7", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2030f976-e214-5c31-a6d3-b5aa5b699512", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6d1f334-484d-59e5-b103-4b15c540371f", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:247015cc-5ddd-5f6f-b58c-e544f611f886", "id": "CVE-2026-27980", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27980 is fixed in version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee60b873-82c1-589b-b510-89a6ca06c9bc", "id": "CVE-2026-29057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29057 is fixed in version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6c64a26-d385-5e00-8c87-5b8c9e331a60", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:896736cf-14be-5dd7-9020-b5875f785d68", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13f558fe-d079-55a7-9c6c-dd7b8f67d2ab", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7dbc80ac-4f18-52be-a779-d7a50577fcbe", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23d8c730-078f-58c0-bbdc-c6492eb716bf", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf620cf4-7b16-57c0-866e-b4b6e85ad5d2", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:12bc64eb-92f5-583a-8621-e549d1e4fea4", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86a6db00-0ab4-504f-9253-2f1ff6e8b157", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b51fed27-2ae1-574c-b8cd-41f98bb3a894", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:258c9fca-26e0-5d5e-8955-28a356d26d66", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26d74f96-ce2e-51b3-9019-06335adf0b60", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b17e1fcc-9d72-5776-827b-4eea8569481f", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35-tuxcare.2 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-third-parties@14.2.35-tuxcare.2" } ] }