{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2d5223a4-9dd2-5184-a123-e2bfba0daf91", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@5.1.0", "type": "library", "name": "next", "version": "5.1.0", "purl": "pkg:npm/next@5.1.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6a576693-244b-595d-925e-7a0ca3ef096a", "id": "CVE-2019-16769", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-16769 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:b8a4cd49-c0d7-53c4-b465-c853cc401309", "id": "CVE-2020-15168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15168 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:032632a4-fe64-53e0-91b2-aff850f9aae8", "id": "CVE-2020-15366", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15366 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:3a3dc209-dd71-510d-a0a6-9848c155d22b", "id": "CVE-2020-5284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5284 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:7c2dab36-20c4-5272-a340-7ef1b9889997", "id": "CVE-2020-7598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7598 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:ab8d88e6-4b95-590b-8f03-20944f6b65d8", "id": "CVE-2020-7608", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7608 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:92496799-4920-5335-aefc-1490febeb934", "id": "CVE-2020-7660", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7660 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:c3548ae1-656c-5227-abe6-e8e215641fbe", "id": "CVE-2021-23424", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23424 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:01782690-2bd5-5615-9158-9d696d26032c", "id": "CVE-2021-27290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27290 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:7c2f6028-b35b-5ef5-a5a9-51f8152f60c5", "id": "CVE-2021-37699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37699 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:5f7ca64e-1ac5-528f-a087-5f17b9c299be", "id": "CVE-2021-43803", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43803 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:870df197-e049-53e6-8782-175bd68bc270", "id": "CVE-2021-44906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44906 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:d8d8019a-10f2-5171-a6e5-61bafaaf1cf7", "id": "CVE-2022-0235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0235 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:611e3f82-bb39-509b-85d1-72324f4f2ef2", "id": "CVE-2022-25883", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25883 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:b7245e49-1325-51aa-91eb-357afb70fb0c", "id": "CVE-2022-33987", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-33987 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:c5d15efa-c8e1-5d1f-b817-b9c5ad746f14", "id": "CVE-2022-37599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37599 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:8f5957f0-a3a6-555e-96ed-61dac5b8d458", "id": "CVE-2022-37601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37601 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:9a89b75c-b442-5e6d-b388-874927e9d913", "id": "CVE-2022-37603", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37603 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:07c957bd-e5b7-564d-8530-581daa0b5c54", "id": "CVE-2022-46175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-46175 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:dbaa4632-7a30-5582-8ec7-5e396fc1c13e", "id": "CVE-2023-45133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-45133 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:1f4db20b-249b-5755-97eb-684eefca7247", "id": "CVE-2023-46298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46298 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:13deb5c8-7b83-5330-8cdc-80e66794c390", "id": "CVE-2024-21538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21538 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:9e350fb9-1ac9-51f4-a888-bd455dcc1289", "id": "CVE-2024-29180", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29180 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:96275d90-93f6-50b2-8d9b-5eb197f1d51a", "id": "CVE-2024-4067", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4067 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:a819cdc9-1b9b-5786-a29c-b4adca933f4b", "id": "CVE-2024-4068", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-4068 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:d576606e-d8ad-5ac1-b30c-f86c6a5f4d0b", "id": "CVE-2024-43799", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-43799 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:3e709d8c-b70f-5168-aa11-74dd979c3039", "id": "CVE-2024-45296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45296 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:3d25afb6-6466-5987-a586-cc7aba8400dd", "id": "CVE-2025-14505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-14505 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:d0b7679e-141f-5475-9baa-8ad66b39cded", "id": "CVE-2025-27789", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27789 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:93b04b2b-82e5-584d-b516-44ba7050c83a", "id": "CVE-2025-32421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32421 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:a9d012df-b1f9-5cf1-8980-69e48bacc354", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:08dfab44-686c-56e3-b54a-07b227d53e60", "id": "CVE-2025-57352", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57352 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:f8b3919e-fd9f-592d-bcdd-ce1843c5109d", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:1bc29ced-2a92-585e-bc3d-19ef3f7fd340", "id": "CVE-2025-57822", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57822 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:a4b1c5d2-d677-56da-8807-2b79dabba704", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:ca7b25f3-68fe-57ee-bd79-e92823e20156", "id": "CVE-2025-68458", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68458 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:bb007d75-788a-58b3-9482-f0aae4e01fa5", "id": "CVE-2025-69873", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-69873 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:422260e0-9d01-5159-b580-1aeeff7df53b", "id": "CVE-2026-2739", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2739 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:bf9e5a64-5721-5e52-a284-4e5683a46332", "id": "CVE-2026-34043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34043 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:e5fef5e5-81fc-503f-804b-1588f51f1896", "id": "GHSA-4xcv-9jjx-gfj3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4xcv-9jjx-gfj3 affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:3063d85d-be3e-5473-8760-d2d490e70afd", "id": "GHSA-5c6j-r48x-rmvq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5c6j-r48x-rmvq affects version 5.1.0 of next." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] }, { "bom-ref": "urn:uuid:1ec6cd81-3b8c-5f61-bd4a-e21c977468b2", "id": "GHSA-7fhm-mqm4-2wp7", "analysis": { "state": "false_positive", "detail": "Vulnerability GHSA-7fhm-mqm4-2wp7 is a false positive for next 5.1.0." }, "affects": [ { "ref": "pkg:npm/next@5.1.0" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@5.1.0" } ] }