{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f807d4f3-5410-5c14-9b46-36c475325b5c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/svelte@3.59.2-tuxcare.1", "type": "library", "name": "svelte", "version": "3.59.2-tuxcare.1", "purl": "pkg:npm/svelte@3.59.2-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2323f44d-9085-574e-b743-dc15fb7871b7", "id": "CVE-2024-45047", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-45047 is fixed in version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:12390fe4-0253-5107-a778-6c31f3dbfedf", "id": "CVE-2025-15265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15265 affects version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c12911cc-00d8-59c3-95f1-a5eef26d023a", "id": "CVE-2026-27121", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27121 is fixed in version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6830911d-ca2b-5dbf-b726-fd34996b6403", "id": "CVE-2026-27122", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27122 is fixed in version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:23728843-d88f-5b37-ac09-e061690c1993", "id": "CVE-2026-27125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27125 is fixed in version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a26b185b-cd18-5975-8e0d-19605a9bc592", "id": "CVE-2026-27901", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27901 is fixed in version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fc15588-09e6-50f1-9299-82259b30e200", "id": "CVE-2026-42567", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42567 affects version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e836289-3d3b-58c0-a75c-3cf97a584790", "id": "CVE-2026-42573", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42573 affects version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4e0756e4-5fd0-5995-8321-86873b66ef0d", "id": "CVE-2026-42599", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42599 affects version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ebba0a-5072-59de-9f97-c450f691665b", "id": "GHSA-f3cj-j4f6-wq85", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-f3cj-j4f6-wq85 affects version 3.59.2-tuxcare.1 of svelte." }, "affects": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/svelte@3.59.2-tuxcare.1" } ] }