{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4e3874d3-02e9-52ab-8e80-c1db71fcfa9b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/svelte@2.16.1-tuxcare.1", "type": "library", "name": "svelte", "version": "2.16.1-tuxcare.1", "purl": "pkg:npm/svelte@2.16.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c74117c4-39db-5b32-ba88-87fcb4ffcc61", "id": "CVE-2022-25875", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-25875 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fba0e1c-1060-5afd-a885-c67ed3bc8615", "id": "CVE-2024-45047", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45047 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:881fd491-b914-50bf-9dbe-484ab07305a8", "id": "CVE-2025-15265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15265 affects version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2dda304-d06e-533e-ae82-9c520cb7a28a", "id": "CVE-2026-27121", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27121 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4479b9d-9559-51b6-a7d7-3b90d22de437", "id": "CVE-2026-27122", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27122 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a348b162-f610-565c-8679-fa035e547f4f", "id": "CVE-2026-27125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27125 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a52d7057-a78e-58aa-a1cc-2385190da82a", "id": "CVE-2026-27901", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27901 is fixed in version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80cf018e-9b71-55e6-93c2-4b899f4d37cd", "id": "CVE-2026-42567", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42567 affects version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2ac07f8b-e931-5a5c-a2d5-83d75dcfe286", "id": "CVE-2026-42573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42573 affects version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd630910-efd0-5b02-9f72-a4c45a04f140", "id": "CVE-2026-42599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42599 affects version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:183895f2-2509-5649-849e-477c1c1e3e24", "id": "GHSA-f3cj-j4f6-wq85", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-f3cj-j4f6-wq85 affects version 2.16.1-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/svelte@2.16.1-tuxcare.1" } ] }