{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c6059d34-919b-5dcb-b930-ac7d8e75788e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@16.0.6-tuxcare.2", "type": "library", "name": "next", "version": "16.0.6-tuxcare.2", "purl": "pkg:npm/next@16.0.6-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:024c0658-95ca-55a6-8568-62c878466f66", "id": "@base-ui-components__react@1.0.0-beta.1", "analysis": { "state": "exploitable", "detail": "Vulnerability @base-ui-components__react@1.0.0-beta.1 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f48bc221-ce40-5398-9c2d-1a78d869f967", "id": "@types__node@20.17.6", "analysis": { "state": "exploitable", "detail": "Vulnerability @types__node@20.17.6 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66971167-9019-5de8-bb44-e901d473a13b", "id": "CVE-2025-55182", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55182 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ea0014b-3328-5be9-b379-271fc2a6fff8", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8853e3b5-fb63-53f1-9ddb-1f97921b0c95", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb46b850-9dd9-5f5e-833c-c4f1c9f12a59", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c8411a6-b83c-5848-a7c0-07f051b88cd6", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9634049b-41a5-5bca-948d-ae3971eb857a", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53f33412-90ed-54a8-8885-40754f0fc7a2", "id": "CVE-2026-27980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27980 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b084c38-b230-52a3-8e9e-c42ec01ee3aa", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c185f8e-b200-57dc-9338-4f4b9b348dcd", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b042a57a-2d65-5388-9361-86efff224183", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddcf8621-957a-561e-aabd-d3115d26a7c5", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a644c5ac-976e-5103-ba03-7866454ce0b3", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59bd6391-a567-5542-b38d-2c71982932fa", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:982c7b4c-b36a-51cf-af04-edda45706d61", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b7fd868-f635-5a98-bc60-483408c495e3", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15d2da03-3289-5448-a153-9b8392f8d389", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41d47176-e7ba-537a-a248-bccf949322f6", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6bda3d01-5845-590e-8d55-a8f275a99b6a", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02425d16-9cd1-5009-9df3-ba200e9d360a", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f815c7ca-3ad7-51c6-8cbd-961de8b8f6cc", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edbc9f82-4020-51b7-afeb-a7268c4e3217", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8baaa384-0f50-572d-8ac5-de991abd5543", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5c51010c-a9e9-5b5d-9eea-c2344da18710", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35fc718f-4353-58a6-8ce1-39aa354b8636", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5be721e1-d926-5e07-943b-68baab2299e7", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd3305e1-651a-57f8-aff2-b9146ac2c04d", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bbe4f3ee-8bcb-5ac0-ba49-93a38ed1ac6b", "id": "stacktrace-parser@0.1.10", "analysis": { "state": "exploitable", "detail": "Vulnerability stacktrace-parser@0.1.10 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa5f40c5-de4c-5311-86db-b6b5cd51899e", "id": "taskr@1.1.0", "analysis": { "state": "exploitable", "detail": "Vulnerability taskr@1.1.0 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:835912c7-4213-5886-a567-be44d7ebfcbb", "id": "webpack-sources@3.2.3", "analysis": { "state": "exploitable", "detail": "Vulnerability webpack-sources@3.2.3 affects version 16.0.6-tuxcare.2 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@16.0.6-tuxcare.2" } ] }