{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:2956f194-ba26-5e61-ac95-497f025244c9",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1",
      "type": "library",
      "name": "@angular/upgrade",
      "version": "16.2.12-tuxcare.1",
      "purl": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:579f1d92-8c06-5fc4-8c6b-baef5bc1ab76",
      "id": "CVE-2025-59052",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-59052 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b13ae690-e4dc-5188-84ca-4d5968115ce9",
      "id": "CVE-2025-66035",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66035 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f28eb591-a75e-5578-97a8-db8e0127921f",
      "id": "CVE-2025-66412",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66412 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:751fe276-a518-5389-b8c1-a06b7fe0114c",
      "id": "CVE-2026-22610",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22610 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:cf4919b9-3ad1-52bd-86b1-4e44abad6770",
      "id": "CVE-2026-27970",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27970 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:80609940-cdee-5596-9272-0ed1ae8a3c2c",
      "id": "CVE-2026-41423",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41423 is fixed in version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:599f3df0-9962-5a51-9f5b-586f0784bb81",
      "id": "CVE-2026-46417",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-46417 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1e071e3e-61c1-5a51-9739-f0d549706191",
      "id": "CVE-2026-50168",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50168 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:02d42351-d243-534c-9263-7c193231e802",
      "id": "CVE-2026-50169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50169 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3310bc13-b155-5900-bdfb-1e886ead7352",
      "id": "CVE-2026-50170",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50170 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8252d4f0-cfcb-5f80-b416-14b69f0b4bf6",
      "id": "CVE-2026-50171",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50171 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:56ca34e2-6461-5cd8-a584-02f1c94e2177",
      "id": "CVE-2026-50184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50184 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:40173066-ed43-5c27-b93d-8abed90b58e4",
      "id": "CVE-2026-50555",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50555 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:71ca1bd0-0631-5b84-9e2d-bf91ab751962",
      "id": "CVE-2026-50556",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50556 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:16444750-bb36-5a33-a233-fbea7c71e66b",
      "id": "CVE-2026-50557",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50557 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fbc4d344-e46f-5275-a9bb-174750e07a7a",
      "id": "CVE-2026-52725",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-52725 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ee7bf7a5-be47-534b-8a71-898306f8872e",
      "id": "CVE-2026-54264",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54264 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6d13bf49-8605-5038-840d-3ae33a60fd37",
      "id": "CVE-2026-54265",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54265 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7b35962e-1cf1-55ac-92c3-ac07461a610e",
      "id": "CVE-2026-54266",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54266 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:db0f7de4-20ca-5ae1-be14-9c66085af736",
      "id": "CVE-2026-54267",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54267 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:615a364e-8245-551c-8129-730ba245c7c2",
      "id": "CVE-2026-54268",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54268 affects version 16.2.12-tuxcare.1 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.1"
    }
  ]
}