{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d112621d-5e68-5e43-be35-f04b791dcd55", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2", "type": "library", "name": "webpack-dev-server", "version": "3.11.0-tuxcare.2", "purl": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c8d5cbda-5244-5dde-8ab1-6be14c036f10", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9240549c-c775-57e9-ad43-f682b1b491dd", "id": "CVE-2022-24771", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24771 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6fdcaf1-611e-5f91-a53e-4f4d02fb995f", "id": "CVE-2022-24772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24772 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca99246a-a448-5977-89c7-7d1d5b30723e", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90c992b0-90aa-5e7b-8ad7-8293ac36e320", "id": "CVE-2024-21536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21536 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f565f67-f28d-56bc-9b07-56a4fd213fab", "id": "CVE-2024-29180", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29180 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ffb2d6e-3fb0-58d3-8971-383bac3cf990", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c42c795-62ff-58d5-9bd0-775236d8bf67", "id": "CVE-2025-30359", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-30359 is fixed in version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb96b3ee-c1c7-5c2e-a848-fb32749a1233", "id": "CVE-2025-30360", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-30360 is fixed in version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23af2bb6-a980-5b5a-bbec-e8c6df8130a0", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6899f5f5-3eb6-540a-a15f-04cddc7e5701", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:561463a5-7286-5fe1-ab89-6279a0d9a3ba", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38d35b55-c721-51c8-9f92-6d8cd41ad200", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49529078-38ac-542c-ab3a-3c7a2678b77d", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84231551-4121-5d27-8ea7-c101273c54da", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4a73aaf-8093-5dce-976c-1435d61d7ef6", "id": "CVE-2026-6402", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-6402 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2826ff51-3a75-5d25-8adb-9f2f8e6549a4", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26474543-b6c3-5929-b408-029aa3320542", "id": "GHSA-gf8q-jrpm-jvxq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-gf8q-jrpm-jvxq affects version 3.11.0-tuxcare.2 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.2" } ] }