{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c10ac838-cc78-5a6a-ba19-39fd3297684f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next-third-parties@14.2.35", "type": "library", "name": "next-third-parties", "version": "14.2.35", "purl": "pkg:npm/next-third-parties@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:22fbc26a-3d56-5a3c-940a-36dbed152a41", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:63972c6e-1d04-5678-af40-01176e56ae35", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:7ded4f14-5ee8-53d4-87b7-562c7acdbad6", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:692cb2cc-9e12-5a26-8655-29274ff45e11", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:a2111389-3840-53c0-b1fe-f938fd4788a8", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:0a581150-35e7-52e2-80cc-d0047d41cfe5", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:53b904ce-918b-5868-81ab-2fbb7e1d5887", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:55da4fa1-84db-5e2b-b198-08288f90e958", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:b4100587-bfaf-5f83-b8ad-8bff56024b2e", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:27767006-9c81-5070-a946-137eaaad407c", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:970e2fae-2e6c-579e-8c51-e13f27b02dd3", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:6702f459-79f6-536e-8125-a7e35cbd1cdc", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:7b4f3222-0b27-5fa2-b3e8-d5fcc4dde30f", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:4060d330-fc53-560e-b478-b59dd7f9f38a", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:878b735a-6bdc-5c8d-96cd-bc0515db6c2c", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:7d184621-e71b-565b-9917-2ce6d5fff9d9", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:06b6fdb4-2a94-5e24-b4a2-0ebaca22043e", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35 of next-third-parties." }, "affects": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/next-third-parties@14.2.35" } ] }