{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4d9cebcf-a57e-5b86-ac3b-9e8a22a25b14", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3", "type": "library", "name": "@angular/upgrade", "version": "13.4.0-tuxcare.3", "purl": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:df011a11-efb3-5361-b5bd-ea2c0b3d9f12", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dcd01dcc-7ce1-5214-bb32-d7babe3d5e77", "id": "CVE-2025-66412", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66412 is fixed in version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2c7c8cbf-e9ba-5254-b663-60f1d48f34fe", "id": "CVE-2026-22610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-22610 is fixed in version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0878b9c4-2ebc-5fea-b23c-d023f1d2c8b4", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf308ff7-1512-5a0d-9688-833e8c04b1e7", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61b32334-1f59-5b5c-bf26-65f4dfe6eae3", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15df3abf-659a-55b5-9aa2-4d52fbb60da8", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b43f5ace-5e18-5b92-a34c-a43bc5310744", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e460b19c-7569-5307-a0ba-74362a0bf8f0", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09bb7910-b9db-57e5-84a0-c0a900d8faaf", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7e490384-8e36-54b1-9d9f-35c796e89eea", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbd06d2a-151a-58c8-ab99-b91b6a6bf23e", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:39d8c88f-d00e-5ce7-8675-b5fab11ac850", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64de93c3-9f04-550c-8c03-54e99b2812c5", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9fa0ef8-ad11-5f09-a944-06562be9bc4f", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5eab64b5-57ba-596a-b053-fc8dce0a2359", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83734109-5d74-5241-9e2a-99d2380d1d87", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4ad7523-eab6-593a-b4c7-13cba2bad9e5", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ddf9cb37-740c-55c0-b19a-88ce7d1beec6", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0782f44c-54ec-5aef-a51d-fbe486fa648d", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 13.4.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@13.4.0-tuxcare.3" } ] }