{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e006c6f9-e83d-5a7d-8f2e-5e0bda23cf64", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@10.2.3", "type": "library", "name": "next", "version": "10.2.3", "purl": "pkg:npm/next@10.2.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:495fea56-032d-5094-8969-2363eaf9ec13", "id": "CVE-2020-15168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15168 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:411eb707-64c0-561d-9be7-9070cfdd782d", "id": "CVE-2020-24025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-24025 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:f32ad3f2-e7d2-5af9-a1ed-3e9d65cfbf5a", "id": "CVE-2021-37699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37699 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:3518a539-1529-5795-9f72-515388ac2362", "id": "CVE-2021-39178", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-39178 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:01cabc3b-90fa-5ccd-9905-42ee9f22d25e", "id": "CVE-2021-42740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42740 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:825f7324-3014-5c12-9583-ac40d12b2c34", "id": "CVE-2021-43803", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43803 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:4b30cd4a-72ed-5a97-9768-3b67f193054b", "id": "CVE-2022-0235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0235 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:6731afd8-b0e5-592e-be4d-d4252ec39ad9", "id": "CVE-2022-23646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-23646 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:ef814ce1-2996-585d-a124-20766024c76f", "id": "CVE-2022-25758", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25758 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:81903ac6-74d7-504a-9c08-28dd8bbe7ab7", "id": "CVE-2022-37599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37599 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:4b7cc128-8b45-51e0-a546-62fff5172ced", "id": "CVE-2022-37601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37601 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:ab1ee8b2-4d4b-5336-8f9a-6a77a832919e", "id": "CVE-2022-37603", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37603 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:b0506efc-b180-5a48-b6bc-ded20cbc9520", "id": "CVE-2023-44270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44270 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:8afdb03a-18dc-5c56-ae04-15f6daecfae7", "id": "CVE-2023-46298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46298 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:613e44ba-d048-5df7-b8c8-2c45c85c3f2e", "id": "CVE-2024-47831", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47831 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:ec2b06c6-d263-5ee4-9d45-f7cb53db1992", "id": "CVE-2024-51479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-51479 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:1d572709-8ac4-5d26-b931-878732011598", "id": "CVE-2025-27789", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27789 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:112305b1-cde7-5876-8d5d-779ee36145af", "id": "CVE-2025-32421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32421 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:78de408a-fca3-598c-bb8f-1846d0de080a", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:2d207eb2-2ce1-5906-9eec-82ce3d544a29", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:19d7d8c7-2aaa-5c48-be40-6b2050722788", "id": "CVE-2025-57822", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57822 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:68701a2d-5f39-570a-acb9-330513c11ff5", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:89cc10da-7270-58d9-aacf-faeb55ae0271", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:e21bc4bd-3914-5433-8c3d-46eabdb551fc", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:2000e39c-62bd-5529-94af-9b08cec31657", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:ecdf6096-58ef-5778-9b22-5a3add76bed5", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] }, { "bom-ref": "urn:uuid:090d6daa-8742-5ef7-8670-55bd6672d66c", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 10.2.3 of next." }, "affects": [ { "ref": "pkg:npm/next@10.2.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@10.2.3" } ] }