{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f78e5dcb-998f-560f-ba2a-d2095cb1fd51", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/ng-packagr@3.0.6", "type": "library", "name": "ng-packagr", "version": "3.0.6", "purl": "pkg:npm/ng-packagr@3.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:77f154e5-5c36-5f3f-ba0f-dbbfe313c167", "id": "CVE-2020-7735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7735 affects version 3.0.6 of ng-packagr." }, "affects": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] }, { "bom-ref": "urn:uuid:7e728ec9-1b4d-5cd4-a4fd-60ac10b3b7c4", "id": "CVE-2024-47068", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47068 affects version 3.0.6 of ng-packagr." }, "affects": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] }, { "bom-ref": "urn:uuid:2bf83ceb-8a56-5ac1-a2f1-02ddb4b981d0", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 3.0.6 of ng-packagr." }, "affects": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] }, { "bom-ref": "urn:uuid:68998ef4-dfa7-5216-b8ae-920951e20645", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 3.0.6 of ng-packagr." }, "affects": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] }, { "bom-ref": "urn:uuid:13b3ad4f-35a3-57c3-b20e-a2f604881cd7", "id": "CVE-2026-27606", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27606 affects version 3.0.6 of ng-packagr." }, "affects": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/ng-packagr@3.0.6" } ] }