{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:d854193f-a815-5516-9a0e-a362993fa317",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2",
      "type": "library",
      "name": "@angular/upgrade",
      "version": "16.2.12-tuxcare.2",
      "purl": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:c7e4932a-1e50-56d8-a0ef-00049a295101",
      "id": "CVE-2025-59052",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-59052 is fixed in version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d9f65953-657f-5de6-bf81-fd5264746967",
      "id": "CVE-2025-66035",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-66035 is fixed in version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0963d297-ba18-52d4-8428-aa7ae5f3973d",
      "id": "CVE-2025-66412",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66412 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a0aa63bd-ace8-5201-aeb7-c67cb6bf732c",
      "id": "CVE-2026-22610",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22610 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:69c7e8cd-658c-57ec-b1df-a971c64541c7",
      "id": "CVE-2026-27970",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27970 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:33f934be-59c9-5870-8456-7e4d3769ba38",
      "id": "CVE-2026-41423",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41423 is fixed in version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9c18b94a-3aa6-5e0c-a735-d0f150d39b4d",
      "id": "CVE-2026-46417",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-46417 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:a3032690-3212-5f05-96aa-ed6dcc169339",
      "id": "CVE-2026-50168",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50168 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:de7b3202-3b36-52f4-a551-6f7a8c9bf3d0",
      "id": "CVE-2026-50169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50169 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9ad2c4b1-21a8-53bb-9827-db0f1d79e814",
      "id": "CVE-2026-50170",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50170 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ffbdc330-c2fa-55b6-8e1b-fb53fc1a87b0",
      "id": "CVE-2026-50171",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50171 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ff84810a-68fe-5971-9485-ef28b02ff397",
      "id": "CVE-2026-50184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50184 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3a37decc-40a3-5ab5-845f-59b6b722eadd",
      "id": "CVE-2026-50555",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50555 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3256f607-faee-551d-9c8e-e1f824d4ac70",
      "id": "CVE-2026-50556",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50556 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:609b13d2-2d12-570d-b5e8-fd2377d8a5b8",
      "id": "CVE-2026-50557",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50557 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b1ebd421-7032-515a-9695-11c0dbd2e5c7",
      "id": "CVE-2026-52725",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-52725 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bae3e880-d1f9-5873-a661-d796b41d668c",
      "id": "CVE-2026-54264",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54264 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fcf07d48-4d75-5ee1-a1c4-59d397827c68",
      "id": "CVE-2026-54265",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54265 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f7bf17c2-eb8e-5190-acef-a06a84753dae",
      "id": "CVE-2026-54266",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54266 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1e4a8ec3-f402-55ea-9177-f9203ab46748",
      "id": "CVE-2026-54267",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54267 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2fa02963-5edc-5805-b6e6-9726ada6b72d",
      "id": "CVE-2026-54268",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54268 affects version 16.2.12-tuxcare.2 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.2"
    }
  ]
}