{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:42da8bd7-8633-57b6-b7e7-94368a41a575", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/svelte@0.0.1", "type": "library", "name": "svelte", "version": "0.0.1", "purl": "pkg:npm/svelte@0.0.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:41a6df5a-787b-50b8-8966-c7c1ec235067", "id": "CVE-2022-25875", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25875 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:97df96ff-f91a-5c7b-9d01-32dd02e638a0", "id": "CVE-2024-45047", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45047 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:e146b42d-4a98-5c87-9aa5-cce83b473fa0", "id": "CVE-2025-15265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15265 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:4248ca23-7698-5d45-9b7b-fb8e56576566", "id": "CVE-2026-27121", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27121 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:20da3b2f-04a6-5d94-b249-6ac26ec9d32a", "id": "CVE-2026-27122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27122 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:2a809690-0242-5bf8-a4f2-df0a34f8bb18", "id": "CVE-2026-27125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27125 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:444c0a69-8243-5457-a058-db92a0ee6b2c", "id": "CVE-2026-27901", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27901 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:53bb2bcf-9c03-5003-9121-d8df4cc6aece", "id": "CVE-2026-42567", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42567 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:44dd1dc3-ca7e-5fc8-8ccc-67bc5746b289", "id": "CVE-2026-42573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42573 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:b9140581-979b-5970-b327-1e54733c37fe", "id": "CVE-2026-42599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42599 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }, { "bom-ref": "urn:uuid:e4846c78-ce6d-59b0-b484-4f090b2a81b3", "id": "GHSA-f3cj-j4f6-wq85", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-f3cj-j4f6-wq85 affects version 0.0.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@0.0.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/svelte@0.0.1" } ] }