{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:939518bd-ea95-5aaf-8412-84baaffff515", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@9.5.5", "type": "library", "name": "next", "version": "9.5.5", "purl": "pkg:npm/next@9.5.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7ae4267c-c701-5b98-812a-193a59087aae", "id": "CVE-2020-15168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15168 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b3df1b37-1de2-587f-8b04-907b8cfe14b2", "id": "CVE-2020-15256", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15256 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b67e884a-2329-543c-a987-d1ea0eb8ac0c", "id": "CVE-2020-24025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-24025 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:393bf3b6-7abf-5d11-99bc-fb0e22079dc7", "id": "CVE-2021-23364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23364 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:af090c90-280b-54b0-94f7-c9c50c5178bf", "id": "CVE-2021-23368", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23368 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:26ebf713-c2b5-5165-a935-aac79ca507fa", "id": "CVE-2021-23382", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23382 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:c927b833-66fa-5f2c-8b28-262dc0fb0120", "id": "CVE-2021-23434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-23434 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:0bfe670d-16d9-5d07-b9d8-f7f83e1b0cd6", "id": "CVE-2021-32804", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-32804 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b2786491-7437-5edf-b74c-96651f84cdeb", "id": "CVE-2021-33623", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33623 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:320c9df8-617b-56d5-af67-08429a85fdd9", "id": "CVE-2021-37699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37699 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b298766c-00ca-5e1d-b560-1b2292ddc053", "id": "CVE-2021-37713", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37713 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:8971ed9d-8713-578f-b705-3486f5cc7a99", "id": "CVE-2021-3805", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-3805 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:a4debb9b-373c-5c21-ab77-c4a0fa26f7cf", "id": "CVE-2021-42740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-42740 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b835724e-afef-5fa1-9054-b28c55c008b4", "id": "CVE-2021-43803", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-43803 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:de50182b-bc93-527c-992f-c4ea336c10df", "id": "CVE-2022-0235", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0235 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:9289e279-c8fb-5d4e-a2f7-62a5fb024496", "id": "CVE-2022-1365", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-1365 is a false positive for next 9.5.5." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:ec325498-615d-5678-9bea-3dc530d4916a", "id": "CVE-2022-25758", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25758 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:536ce534-bbdd-507b-ad34-9387dfcd99fd", "id": "CVE-2022-25858", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25858 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:d274da09-2295-587e-8a87-fc68df2dbc01", "id": "CVE-2022-25883", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25883 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:096b5530-ce74-5df9-90da-7c34ad9e4c21", "id": "CVE-2022-37599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37599 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:3cdcf955-cf40-5b5c-a02e-99cb67007107", "id": "CVE-2022-37601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37601 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:0ef696a9-1eb8-5e3a-bdf0-2c8302fa1369", "id": "CVE-2022-37603", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-37603 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:a439c3fa-6c5d-59ef-b5f3-299c3515e85f", "id": "CVE-2023-44270", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44270 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:89daccf8-8356-5e0e-a936-1a4e2574f8d7", "id": "CVE-2023-46298", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-46298 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:5a5ee0f2-cf2a-5e8b-ab08-67801d997a74", "id": "CVE-2024-21538", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21538 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:e0790871-be35-5fff-aba4-8bc3bfdd9a66", "id": "CVE-2024-51479", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-51479 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:63d78efa-afd6-5405-afc6-5a3f51c941e6", "id": "CVE-2025-14505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-14505 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:ffa077c3-edcb-5c8b-b9c4-ef7d9c57474d", "id": "CVE-2025-27789", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27789 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:1e9d5eeb-0f1c-5a40-b3ab-0672d76956ff", "id": "CVE-2025-32421", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32421 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:efa999ac-44c5-52e4-93e7-12535eeef058", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:b0971e01-d93d-5b24-9551-cc0882492c86", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:69efc7f9-e614-52a0-9fb3-c15d9b960dd0", "id": "CVE-2025-57822", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57822 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:eb82168c-ee5b-5db2-bd70-dbe124374a3e", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:a6bb8b3a-d501-599e-ba8b-8e225cf628e4", "id": "CVE-2025-68458", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68458 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:88bda7b0-102b-5f80-a4f1-818d58403671", "id": "CVE-2026-23745", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23745 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:0f997f13-ceb6-53c6-8e10-bebd23c4acbe", "id": "CVE-2026-23950", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23950 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:2c392b15-bdb6-5830-94d9-880dc2b05136", "id": "CVE-2026-24842", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24842 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:1704f501-8578-5ad6-9641-98767457bbe6", "id": "CVE-2026-26960", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-26960 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:8e8770e2-9cf0-5f93-a563-2fa656714a18", "id": "CVE-2026-2739", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2739 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:9576ab7f-09f2-59c3-975d-ce18567e4d90", "id": "CVE-2026-29057", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29057 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:85bb55f2-56e5-5c2c-800a-c15d98a753f6", "id": "CVE-2026-29786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-29786 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:ee435aaa-c28a-5198-b63b-2bd7e45ea6e5", "id": "CVE-2026-31802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31802 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:3ffad96d-3afd-5d4e-b5cf-0ec56769f4f6", "id": "CVE-2026-34043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-34043 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:78b3772f-ff52-57a2-841e-ea3b7055cdef", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:3eec5058-a087-5c5f-b3ca-e36ee27ba30b", "id": "GHSA-5c6j-r48x-rmvq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5c6j-r48x-rmvq affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] }, { "bom-ref": "urn:uuid:43acdbeb-c893-5543-9cea-3bc829108e59", "id": "GHSA-qffp-2rhf-9h96", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-qffp-2rhf-9h96 affects version 9.5.5 of next." }, "affects": [ { "ref": "pkg:npm/next@9.5.5" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@9.5.5" } ] }