{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dcc5ba32-955f-5a82-bcdf-7527b6167f86", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/vite@3.2.11", "type": "library", "name": "vite", "version": "3.2.11", "purl": "pkg:npm/vite@3.2.11" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:81126373-b98a-5c72-85e1-a7b722c4967b", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 3.2.11 of vite." }, "affects": [ { "ref": "pkg:npm/vite@3.2.11" } ] }, { "bom-ref": "urn:uuid:bb592d4c-c2a4-5cc6-b7c8-5c577da0e4df", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 3.2.11 of vite." }, "affects": [ { "ref": "pkg:npm/vite@3.2.11" } ] }, { "bom-ref": "urn:uuid:cbe6c0fe-02f2-5344-997d-cd1788c36533", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 3.2.11 of vite." }, "affects": [ { "ref": "pkg:npm/vite@3.2.11" } ] }, { "bom-ref": "urn:uuid:43fb04ac-defd-5dfe-9749-9f85d12700b9", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 3.2.11 of vite." }, "affects": [ { "ref": "pkg:npm/vite@3.2.11" } ] }, { "bom-ref": "urn:uuid:9cbcb78b-09ea-5750-ae75-4f891d1cbe9e", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 3.2.11 of vite." }, "affects": [ { "ref": "pkg:npm/vite@3.2.11" } ] } ], "dependencies": [ { "ref": "pkg:npm/vite@3.2.11" } ] }