{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:8f7d25aa-b331-5203-ab3f-4a160147f87a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3", "type": "library", "name": "@angular/upgrade", "version": "12.2.17-tuxcare.3", "purl": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f818fa17-15b6-5b20-a766-177c75e3ac0f", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3a35a89-d20f-599f-9a0c-ada1e9a5ab8b", "id": "CVE-2025-66412", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66412 is fixed in version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46121232-d586-5fa2-8d8b-be6afe2421e0", "id": "CVE-2026-22610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22610 is fixed in version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5008f116-1bdc-5e78-909a-64d10f7b1bc3", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7484a2e9-2721-5360-afa2-404d07367d05", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:877ed422-5d1b-5f6c-a385-e84e6229b154", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dace6d5d-9ab2-58a5-ae7b-c320b20993b5", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15119a90-12ee-5916-8460-895b23d258ee", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb683585-755a-54a2-99f2-5e123a5f5c21", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fd9b185e-43f8-5667-86a1-000137f22eb2", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c37eb9f-2dc7-52bc-b91d-a2999409ccd4", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8bb83a8e-4057-5855-93c7-272de232460d", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3f2b5152-f0f6-5c5d-8e5f-7c8562f0a5d6", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bba2ea45-8e3d-589f-87aa-309b5c3406c4", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c34115d1-15ab-51a5-9b15-f706be4a36d4", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3fd9d80f-3935-535b-92f0-e3404b5b0c33", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c27ccdb-2ee9-592d-8d19-6927f62eb16e", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d13bc0ca-4d65-5e19-9a47-02b29ebb75ad", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a8bb3e9-0388-51c0-862e-81fba52631c1", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1732de9-553e-5321-80c5-e9f20e143cab", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 12.2.17-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@12.2.17-tuxcare.3" } ] }