{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:26c91fb8-e74c-50f7-97cd-4ec2a029789e", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/vite@5.4.7", "type": "library", "name": "vite", "version": "5.4.7", "purl": "pkg:npm/vite@5.4.7" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a0d0caef-b540-592d-91e9-50946b62d105", "id": "CVE-2025-24010", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24010 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:d0498ec2-1e16-5397-ba4b-50a39765c049", "id": "CVE-2025-30208", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30208 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:875b75b7-e159-5e5d-89d5-9896ddf503b8", "id": "CVE-2025-31125", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31125 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:866fa09e-dcbb-5992-ba46-b50d2adb8d14", "id": "CVE-2025-31486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-31486 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:af314057-acdd-59c0-a4aa-0fd155d78794", "id": "CVE-2025-32395", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-32395 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:ff8da608-b87c-597e-a0e9-8a033673a1d0", "id": "CVE-2025-46565", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-46565 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:fa86d6d9-36e2-54d8-9f0d-eb7d989d69b5", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:502d1200-a816-5d79-9d00-17fdedda14ff", "id": "CVE-2025-58752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58752 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:05b74b68-687a-5fda-b22c-e86543063772", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:73852947-3595-5035-ae33-43300c357394", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:08b20566-1e44-5502-a4ac-5f8889d1b83b", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] }, { "bom-ref": "urn:uuid:b659333b-944b-50b7-aa80-801eb9cedd64", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 5.4.7 of vite." }, "affects": [ { "ref": "pkg:npm/vite@5.4.7" } ] } ], "dependencies": [ { "ref": "pkg:npm/vite@5.4.7" } ] }