{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cd47a138-b7bc-55da-98fa-52ee10426de1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/webpack-dev-server@2.11.5", "type": "library", "name": "webpack-dev-server", "version": "2.11.5", "purl": "pkg:npm/webpack-dev-server@2.11.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6ff80d78-a3c3-5b93-b847-dffde22d55b9", "id": "CVE-2018-14732", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-14732 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:37efc1b4-0896-5615-b661-6c955a4ce597", "id": "CVE-2020-7693", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-7693 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:deabcfb7-3a1b-5f43-acd8-46bfabd85411", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:418f8b14-6749-501a-890d-f22b6afec448", "id": "CVE-2022-1650", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-1650 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:4cb6192f-868a-5e3f-bbf4-7067f8d1e59f", "id": "CVE-2022-24771", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24771 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:0df76ff0-f809-5211-b8cf-b10084f9b7e3", "id": "CVE-2022-24772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24772 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:7b7b7947-bde9-5709-94c7-87ea1e10163e", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:3030d6ba-694a-5c7e-8abf-f28c8542d76a", "id": "CVE-2024-21536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21536 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:48e9191f-9dcb-5ab5-bda3-c83a1647e530", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:5879a8bd-8036-510b-9516-19cabb67544f", "id": "CVE-2025-30359", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30359 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:dd052782-2e5a-5496-9776-f214d7c2d876", "id": "CVE-2025-30360", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30360 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:6705e90e-eff2-572e-8a2e-fef25cb434c4", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:81839623-88ee-518c-9e5f-367497d2c3b8", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:6dbf92c9-bab4-57f2-8845-f50593f25e71", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:296c5a26-32af-55f1-9318-7cc2f9fc3e4e", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:fbad6062-f75d-52bb-8000-bf3e9553c0fc", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:d02ca815-c1e1-54c5-a096-42a99fa413ba", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:05274db1-a94b-55d4-8e61-71bea4cfe171", "id": "CVE-2026-6402", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-6402 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:eb0794d1-4382-58c2-bcb6-b476412dd94f", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }, { "bom-ref": "urn:uuid:3db120ea-d3a9-5e9b-9fb2-79906e1d3ab7", "id": "GHSA-gf8q-jrpm-jvxq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-gf8q-jrpm-jvxq affects version 2.11.5 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] } ], "dependencies": [ { "ref": "pkg:npm/webpack-dev-server@2.11.5" } ] }