{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ccf9277d-10d0-53f2-86f6-b10ff81e4bb2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/webpack-dev-server@3.11.3", "type": "library", "name": "webpack-dev-server", "version": "3.11.3", "purl": "pkg:npm/webpack-dev-server@3.11.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:67603389-aec4-5526-bd8d-6b3384436923", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:51d33d19-44e3-5e3b-9c28-b91299c8a2a3", "id": "CVE-2022-24771", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24771 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:f95d8546-70f2-5c84-954b-b47d5718c9c0", "id": "CVE-2022-24772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24772 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:d30fdd43-b866-5e81-b35e-09d6330b93e1", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:c1014afc-0a31-5159-9418-82f00f1984da", "id": "CVE-2024-21536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21536 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:ef6e7cae-b962-511e-83b7-d81549a53f15", "id": "CVE-2024-29180", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29180 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:5edb48de-4a09-5f6b-8e3c-8351c9fce85c", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:e375b1d3-a9b5-59ac-a567-18a3768d7f1f", "id": "CVE-2025-30360", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-30360 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:25b30329-7279-5f81-bce8-770230807ed8", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:742192b2-ed0b-5b4f-a719-96133ccf50d8", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:369bcad1-fe40-5c38-8098-9953911dbe75", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:17182bbd-25a8-5f4a-ab1d-4094dae70894", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:49393e6a-e534-5f90-8e47-9c3c3b5cbb73", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:5da8bf29-d78f-5b2b-910a-12493b1260f1", "id": "CVE-2026-6402", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-6402 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:82c6b6b4-319a-5d01-82c1-0d7cbdc87f85", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:93e9b382-cc5c-5807-bb24-76f4117bdd61", "id": "GHSA-gf8q-jrpm-jvxq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-gf8q-jrpm-jvxq affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }, { "bom-ref": "urn:uuid:e6336c3a-75a4-591d-ab88-9e85cf29893d", "id": "GHSA-w5hq-g745-h8pq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w5hq-g745-h8pq affects version 3.11.3 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/webpack-dev-server@3.11.3" } ] }