{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:6d5a5fc3-0849-5500-959d-2ca4b3d25a6c",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/node-forge@0.9.1",
      "type": "library",
      "name": "node-forge",
      "version": "0.9.1",
      "purl": "pkg:npm/node-forge@0.9.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:bdc83db6-29ed-550d-aa63-22f13e135548",
      "id": "CVE-2020-7720",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2020-7720 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:00ebd4de-6516-5c21-8dac-0fce12231176",
      "id": "CVE-2022-0122",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-0122 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c2fe7d6f-3f52-53cb-9e53-b61682d5989c",
      "id": "CVE-2022-24771",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-24771 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c51770b3-9ca4-517c-858b-9c106ed4a78b",
      "id": "CVE-2022-24772",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-24772 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fa27812d-4d3e-527c-a837-0dd7be330b6c",
      "id": "CVE-2022-24773",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2022-24773 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8a48776a-67b0-5ff5-b550-b81e1a5700cd",
      "id": "CVE-2025-12816",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-12816 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:87663963-8fb2-5453-9595-94f40ce1ca81",
      "id": "CVE-2025-66030",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66030 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b16fec10-96e1-5406-84f9-05336803622b",
      "id": "CVE-2025-66031",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66031 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6f672876-96a5-5772-9f49-cc45aef88576",
      "id": "CVE-2026-33891",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33891 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8a88de4f-899d-5145-9210-827e897f8866",
      "id": "CVE-2026-33894",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33894 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9842ff04-f87c-5284-b052-07997e099240",
      "id": "CVE-2026-33895",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33895 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:86d8d6aa-7157-5874-bf2e-bd23d862557a",
      "id": "CVE-2026-33896",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33896 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d2fb9cc3-5ebb-5957-ae6b-044f40304da2",
      "id": "GHSA-5rrq-pxf6-6jx5",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6edbc2eb-5815-50d4-8304-d02c2eb91c51",
      "id": "GHSA-gf8q-jrpm-jvxq",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-gf8q-jrpm-jvxq affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5cd83e19-ab6f-5db4-8289-71894893aef6",
      "id": "GHSA-wxgw-qj99-44c2",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-wxgw-qj99-44c2 affects version 0.9.1 of node-forge."
      },
      "affects": [
        {
          "ref": "pkg:npm/node-forge@0.9.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/node-forge@0.9.1"
    }
  ]
}