{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:753b5e0c-b315-5134-b04f-703a44c595d0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@11.1.3", "type": "library", "name": "next", "version": "11.1.3", "purl": "pkg:npm/next@11.1.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:35bf0678-0815-567e-865b-b607123c7b99", "id": "CVE-2020-15168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15168 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:f567929c-3bda-5158-a9cb-47343c5040c0", "id": "CVE-2020-24025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-24025 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:6e43dfb7-12ee-5843-8233-fc77f3e36ee9", "id": "CVE-2021-42740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42740 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:eaf91dda-8198-554e-ab65-c2496f74f734", "id": "CVE-2022-0235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0235 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:19d50bbf-603f-567a-b3a9-ec063917caaf", "id": "CVE-2022-23646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-23646 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:d9a9ed02-136f-59e4-a027-d1ecd7eaca4c", "id": "CVE-2022-25758", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25758 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:0277953e-b8ab-5438-b773-5ca50726e43a", "id": "CVE-2022-37599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37599 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:74e6b5f4-0c59-5685-97c2-d19bd107fd6d", "id": "CVE-2022-37601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37601 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:9be3dc62-bbb2-5b23-8df8-d7a64446b531", "id": "CVE-2022-37603", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37603 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:7cbcee5c-3371-59d7-9d5e-1dac5d497bba", "id": "CVE-2023-44270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44270 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:004026a4-1087-5b92-b9ed-7506923cf428", "id": "CVE-2023-46298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46298 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:3c4dcd67-8f77-591c-9426-b094b46293af", "id": "CVE-2024-47831", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47831 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:b5b18398-12e7-52ad-92ff-a8fcdf57a796", "id": "CVE-2024-51479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-51479 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:d2c1a883-4adb-576a-8af1-aa17ff653869", "id": "CVE-2025-27789", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27789 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:ccdf3c01-57d9-5bbf-92e9-d4093c26e790", "id": "CVE-2025-32421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32421 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:1bd381d7-8988-528f-8b86-cf1b56ef6406", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:ecad2013-6e47-5fd6-b80c-936595bb442d", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:62e0e170-939b-57ca-86a3-80d6955a03c9", "id": "CVE-2025-57822", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57822 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:3621e1c4-e2a0-5f17-8c46-a65e67b9076e", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:1771c041-7e2d-5b56-93f2-e890775b8603", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:4da2dd27-dae3-5f41-b540-35f1ab20135e", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:cc688033-ff1e-5165-b238-75be6df98358", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:dc9376b9-a1f4-5979-8e3e-fbfbca50b281", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] }, { "bom-ref": "urn:uuid:10a997f7-9d1e-5c63-adb7-1aa3ee0ad22c", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 11.1.3 of next." }, "affects": [ { "ref": "pkg:npm/next@11.1.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@11.1.3" } ] }