{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1675f1b3-b801-54a4-a47b-b931a2d392f9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3", "type": "library", "name": "@angular/upgrade", "version": "14.3.0-tuxcare.3", "purl": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:51457ccb-f29f-5ca9-8d73-c6c37dfd8529", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ba0a506-1d78-565c-8594-78e035b71deb", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ac68440-51f3-53e2-9a89-c4c59ab8d57d", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54d0c6f0-4393-5d7d-9788-763cc3534388", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5287361c-5e2f-5cc1-83ac-67e69aaa6947", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:82253ab9-0216-5326-972d-10413da64032", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d316a8d-4bda-59ba-9a5a-87ca3d93e4c3", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5c473e0b-7d86-5e2d-9a3b-499910a26b6d", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14d92abc-db07-5f9f-a618-98b3a4418e9d", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf1b3deb-c918-5ea6-ad5f-d2950f2dc698", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:780dd3c0-e585-5370-836a-9297886b56d2", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b4b4080-3da7-58d4-8587-8eb3a1ff1eec", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:323bc156-8937-5d9d-a427-28bb07713cc9", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5fa546e0-9238-5b8e-89a2-fb4893c44a03", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cf891047-d51c-587a-ae6d-ded13a1ea2db", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93568a21-13f5-550d-8651-15ace5f8d7be", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9cd4f1b2-4187-519f-bed3-0a4792045376", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9fda629-97ce-5939-959d-9d3c00502a72", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:213ecc07-7490-587f-a526-9dd832daa477", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a137fde6-a6f1-5b50-a785-c85ad9c34e5a", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 14.3.0-tuxcare.3 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@14.3.0-tuxcare.3" } ] }