{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:04c20475-a282-50f6-aa2d-18c279385790", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@7.0.2", "type": "library", "name": "next", "version": "7.0.2", "purl": "pkg:npm/next@7.0.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e3b74959-a510-5739-8bfd-54303d2c40b4", "id": "CVE-2019-16769", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-16769 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:566475ab-417f-509d-bc47-492741d0f5e0", "id": "CVE-2020-5284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-5284 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:392aa81b-966c-5fc7-b720-9688b68bcbbc", "id": "CVE-2020-7598", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7598 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:d6029603-988f-5266-b463-2c1869e3e17f", "id": "CVE-2020-7660", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7660 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:3a8825f0-ef42-5f8a-98d7-9191eb5ae742", "id": "CVE-2021-27290", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27290 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:6f84d022-0e5b-531f-8456-50d5f427e952", "id": "CVE-2021-37699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37699 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:9adeeda9-285f-5b75-87cf-16e7e1877bf9", "id": "CVE-2021-43803", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43803 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:fda81ab3-67f4-547c-8fc8-2c2070fe207e", "id": "CVE-2021-44906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44906 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:f03c2e89-cc63-526d-847e-83ab9e0b8af4", "id": "CVE-2022-25858", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25858 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:2004bada-52d4-51bc-ac90-30d717b5d733", "id": "CVE-2022-37599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37599 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:85c17193-81b4-5e88-9897-fee2b6cfc7cb", "id": "CVE-2022-37601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37601 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:56db4fdc-e0da-5d31-acfa-b3d53dbdc938", "id": "CVE-2022-37603", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37603 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:0f3d3efe-d84a-525b-8785-7975ec789d80", "id": "CVE-2023-46298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46298 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:f6b8d204-7e7b-55b8-82db-6aee3f69d577", "id": "CVE-2024-29180", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29180 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:c12ef27d-9055-5c92-8fec-6c9033df3837", "id": "CVE-2024-45296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45296 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:82bf5b95-a5c8-5ab9-be26-4e8e5f290cf0", "id": "CVE-2024-55565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-55565 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:ab49ada9-a71a-5934-9e94-140306ddd53f", "id": "CVE-2025-27789", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27789 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:660bd3b6-a072-5fb2-b9e3-584aa5e7e203", "id": "CVE-2025-32421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32421 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:c5e1369a-47d1-597b-9f36-fb646df3725d", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:14344414-719a-53fb-b6ee-4401cd77170c", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:95be1792-8568-5c91-bd63-d2b1aa4ea8e0", "id": "CVE-2025-57822", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57822 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:b94f22f1-ead2-5039-9981-e24879b1860d", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:9f87b16e-1591-5aa9-ab05-ff58ceabd938", "id": "CVE-2025-68458", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68458 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:c69f5c12-1715-5251-b30a-03e24b3b2434", "id": "CVE-2026-34043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34043 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:52156466-ac59-5f08-9894-873b18eb8deb", "id": "CVE-2026-44728", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44728 affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] }, { "bom-ref": "urn:uuid:aa9dd31c-8edd-58a1-a405-ebb127128309", "id": "GHSA-5c6j-r48x-rmvq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5c6j-r48x-rmvq affects version 7.0.2 of next." }, "affects": [ { "ref": "pkg:npm/next@7.0.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@7.0.2" } ] }