{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:896fe2f3-0c7f-53ea-b370-07e745b5f28b",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/protobufjs@6.11.6",
      "type": "library",
      "name": "protobufjs",
      "version": "6.11.6",
      "purl": "pkg:npm/protobufjs@6.11.6"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:a15b7e63-ad1a-509f-9a75-0072134b85a3",
      "id": "CVE-2026-44289",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44289 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3b072ad1-21b4-5c8d-9796-f81bd8264bb8",
      "id": "CVE-2026-44290",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44290 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f2dab260-e8e5-549d-9068-68540eec58a5",
      "id": "CVE-2026-44291",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44291 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2d3dc103-8bbe-5ef5-b74c-77554776ed51",
      "id": "CVE-2026-44292",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44292 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:48b446aa-ae5e-57e4-a8ce-bfb1b1ab147f",
      "id": "CVE-2026-44293",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44293 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9a2b2b37-89c0-5263-b471-f4f0099d5d35",
      "id": "CVE-2026-44294",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44294 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ce839ae6-df9b-5edd-acb2-cbdf357b9969",
      "id": "CVE-2026-45740",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-45740 affects version 6.11.6 of protobufjs."
      },
      "affects": [
        {
          "ref": "pkg:npm/protobufjs@6.11.6"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/protobufjs@6.11.6"
    }
  ]
}