{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0bcf26a0-d07f-59ea-b5b8-41028a0ef5cd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "13.4.0-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b8f69da1-7d4a-58a8-8244-2fe1db77d0e9", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1f0581b-e55b-5968-9af1-a6f58fe6e712", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbe8bf19-435e-5a3e-a483-b0ad321abe23", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83dc3a68-01b7-58aa-8766-5035c527ae40", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83a1744f-e479-576a-abe7-f05289393721", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef5b2e9b-77b9-599f-8851-9898b4bbf515", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cd52985-aa7c-531f-8551-8f271d07a21c", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2549d3c3-8ff4-59f4-a42e-830f67eb99f1", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27185902-9695-5df6-8df3-3fe2f23ab8ad", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76860c2f-3c49-5960-b76a-84566473285a", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30c6322c-b264-5f8b-8265-159a349a2924", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33679ff7-a4a9-536c-85ae-4e3d68a2503d", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c88ca4a-7365-5a9d-a731-558eb3711dfc", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48574b02-6619-5182-9e9c-92883d58edff", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a55d8f5a-26f0-50c5-81bc-1999e8de686a", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e40f183e-434a-5332-944e-ec35e44e8c8d", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7dd02a2-9bec-5303-b520-737f7ac54909", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc4a9561-430c-5437-8ef6-3462a30e87fd", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96a3cd7c-3be0-5779-b371-e165242a7676", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c19ab331-24d7-584c-91c7-27dccc14d4db", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 13.4.0-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.1" } ] }