{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eb4a6408-6a9e-577a-9447-ef3053ebbd82", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@16.0.6", "type": "library", "name": "next", "version": "16.0.6", "purl": "pkg:npm/next@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:88ce1b24-eb59-55d5-8436-111d7eb4f348", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:567fdf40-f9bc-58a3-a352-4386fb4f3064", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:db8d7079-be94-535e-b8e3-4327a5e21227", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:7f3ce15b-babf-5de2-83ca-e97f2499a4d9", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:2a56cb45-d0c8-5334-b7b1-a53a8a0f6660", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:98fb0e8a-face-5743-8b87-042dc8254f16", "id": "CVE-2026-44572", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44572 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:5ebad80e-608c-5b68-9d6c-3bd57a6255ef", "id": "CVE-2026-44573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44573 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:8a709777-d537-5887-9531-e31c1f5c683c", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:faa54a38-a206-5f8b-bad8-7e6e9c2fd29d", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:21be43ea-f411-5c53-b5e3-26fdf2587796", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:061cd65f-10b7-52e3-90f1-629bda8378ee", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:270d1e03-f7d6-5f7e-baef-977582a69ea1", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:ffbbbb38-dd3c-51a8-b7ce-baf8e0dd8d5f", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:89d7154b-bc1a-58fd-ba7d-8bbc20ddec07", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:3f313932-244f-51ed-a426-49cf7d8cd36b", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:0b3ba2f2-789d-5e0f-80d6-cbb34deb8833", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:5062a29a-7b40-56db-a74a-ff27407d6f4d", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:29648465-a91b-5df5-bc37-6a01a9972357", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:239ca9c6-7586-5da5-bac6-72db87f636f0", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:3acc4f9c-fd04-5724-b45f-602ba34104b5", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:af02cf98-2820-5fad-8d1e-e8d66921c62f", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:bd4bcdbe-926e-58f0-a30f-0e1b23e7142e", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] }, { "bom-ref": "urn:uuid:bad79144-46fb-5e69-b357-bca638cc12d6", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of next." }, "affects": [ { "ref": "pkg:npm/next@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@16.0.6" } ] }