{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:90838a65-be85-5916-b9d3-7e7c6c2f5778", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/vite@4.5.0", "type": "library", "name": "vite", "version": "4.5.0", "purl": "pkg:npm/vite@4.5.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:62397728-df22-5e50-a79a-16af127b6dbc", "id": "CVE-2023-49293", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-49293 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:1b8ff5e3-73ca-5052-8e3a-4248a681cd8f", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:4432e0dd-81fc-5026-92b4-87f5352d8087", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:e02c3040-09aa-5a77-9576-489b5936c8b2", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:7b62f639-ad8f-5ef2-a32e-f54655cc9eab", "id": "CVE-2024-45812", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45812 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:254762fa-3da5-59d5-b833-5145ec39af92", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:899670fc-a861-5dd3-afdf-3c77aff34f8d", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:c621201e-e4fc-5680-8cbc-e5fc41dfc0db", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:0908e1e3-6c86-582d-a229-c7a6325fd8e0", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:e2e58402-8de1-5197-b042-992e7f70c799", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:824dc9de-2d55-58e5-9784-f30b1e935b35", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:4ace2e8a-01c6-5ffe-9c31-3e07e064209c", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:ba8c4d3c-20e3-5de2-a705-6ab7b1790004", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:d53a404e-adce-5e9d-9911-72555e8a26ff", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:35c36524-f250-5eee-aa93-a2a313e66fdd", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:371039f1-1d59-5f26-a7da-cf1e88976b8f", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] }, { "bom-ref": "urn:uuid:a1fd6466-2b1c-592c-b653-e57ed8c037a3", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 4.5.0 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.0" } ] } ], "dependencies": [ { "ref": "pkg:npm/vite@4.5.0" } ] }