{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:90ccbc58-2f50-5048-9b11-8e4365ce38a3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/nuxt-webpack@2.18.1", "type": "library", "name": "nuxt-webpack", "version": "2.18.1", "purl": "pkg:npm/nuxt-webpack@2.18.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:afd94b89-836d-57fa-8778-0dd3443e9544", "id": "CVE-2025-68458", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68458 affects version 2.18.1 of nuxt-webpack." }, "affects": [ { "ref": "pkg:npm/nuxt-webpack@2.18.1" } ] }, { "bom-ref": "urn:uuid:1535a537-5c6a-5176-9bb8-3bd7be83843d", "id": "CVE-2026-35209", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-35209 affects version 2.18.1 of nuxt-webpack." }, "affects": [ { "ref": "pkg:npm/nuxt-webpack@2.18.1" } ] }, { "bom-ref": "urn:uuid:e58ec672-fdae-5e7e-8925-d511c6a785fc", "id": "CVE-2026-45669", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45669 affects version 2.18.1 of nuxt-webpack." }, "affects": [ { "ref": "pkg:npm/nuxt-webpack@2.18.1" } ] }, { "bom-ref": "urn:uuid:a745e212-f769-5828-a250-0836bfaf7d63", "id": "CVE-2026-46342", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46342 affects version 2.18.1 of nuxt-webpack." }, "affects": [ { "ref": "pkg:npm/nuxt-webpack@2.18.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/nuxt-webpack@2.18.1" } ] }