{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:37ccd03b-dd4b-5878-ab90-c79d00bf27d9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/vite@4.4.9", "type": "library", "name": "vite", "version": "4.4.9", "purl": "pkg:npm/vite@4.4.9" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:17e043a2-cfaf-5e30-8ea6-8f08d6c3d4f0", "id": "CVE-2023-49293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-49293 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:d70a3bbd-5efb-59aa-8181-333d7b7db94e", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:5d34b88e-a634-5cc4-bc5f-058f975c6383", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:f1461775-169d-5296-87b8-4ae7b9ea86a2", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:7a674a7a-3613-540b-ac70-281586567c09", "id": "CVE-2024-45812", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45812 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:728c4955-d26c-5483-b699-d4e7dd0aaad1", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:f3bf1a5d-fd01-59ac-808c-4639c534e0c1", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:05325f9f-2ea0-58e3-aaac-48d357fe3a0a", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:794951d0-96e4-5bec-a13e-1ffde929926c", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:194f3622-9575-5c68-818c-710f7678fcd0", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:b1fc42ac-f2de-51f0-9719-d4654e810933", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:90042a4e-0420-5caa-8581-da24d35af9a1", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:5d16e513-e0b3-538e-b7b5-b636497baa5c", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:d18c9354-c92d-5176-acba-58dad93fd66a", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:ab501068-0ff4-5ed2-ac31-c63ddb03e741", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:33810100-b7ab-502b-b460-76750162dd2b", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] }, { "bom-ref": "urn:uuid:e95f2ceb-c007-53de-9025-694909f2bcc7", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 4.4.9 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.4.9" } ] } ], "dependencies": [ { "ref": "pkg:npm/vite@4.4.9" } ] }