{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:86e14e9f-9cb8-5b8e-9d0b-ac891c7874c5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "12.2.17-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ade3332b-5506-53dd-b26c-386215933025", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1aac5de-7590-58d3-bab1-4abbe6c0d2e1", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64f90b1d-3b20-5402-a182-3b9c58452661", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c50f509-3437-56c0-9a3f-b4fbcdab9d29", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fff1de4-db61-57d3-a071-8c6da6df7b1a", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9405c62-09d8-5242-8baa-09b116673bac", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab0bd9d3-8d5d-5b2e-9416-d77dea802b42", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:843a4adb-ff76-540c-93d1-3f32db6f5797", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71f5f4e2-cac4-5472-b65c-e9e937e64473", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17ff4843-baf9-5d04-aa40-ee86ab1ca181", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf73d7f0-acf7-5738-8187-9f158012ea57", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecdbab1f-1e15-5d62-9d45-0cab7ae4691d", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e68229c6-4cd1-50e1-9581-296cb7b99802", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99d329d8-53c4-5f05-a9bf-944cdb3a2894", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6485fc7-692d-5eea-b706-46308581f4a5", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f6ebe08-8a3c-5963-810d-0ba34bccf457", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5fe6cbf2-d237-5810-9d26-87f10031fee8", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d04284d1-dc57-5478-ba70-b9e9418d3c57", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de252f6e-3962-5ee8-8dbf-ba5fdf115867", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e94e8506-cb01-5a20-abb5-f8a5da6703a9", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 12.2.17-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.1" } ] }