{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7859e517-0f74-5bea-93d9-121382b31df4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4", "type": "library", "name": "@angular/upgrade", "version": "16.2.12-tuxcare.4", "purl": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a3d8bff3-2dcb-5d4a-9153-3ed788c3c56e", "id": "CVE-2025-59052", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-59052 is fixed in version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:58ee43ca-5cde-5496-8fdb-ba926c22401e", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7b2a607f-b270-5e13-a535-457f53af2eeb", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89ceffc3-a286-5302-80ed-711f02a8ca11", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:2336390e-747f-504e-8ad0-289736792c1a", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4288f93-de3f-597a-90de-29a5c1eefe0b", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:787b2ff2-b040-5e23-9c08-7f46fdab5bee", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a753b3cd-5a8f-5c36-999c-2d637e9643c0", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdee6cad-a41b-5009-9acf-585c307d096a", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0ecf3966-b6e0-5c24-b14f-75d63233c597", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:686fef28-4709-5fc3-b336-603bcbbca7c1", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ea86c98e-136c-579a-ad8a-8429b77eb84b", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e062f95b-49de-5c51-9471-4604c7f70cac", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:25fdbbe0-087b-5f81-ab32-2d9b27cc9d9b", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:049a545d-6a71-5a29-8c08-f4d557b1e3f9", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3337c8ef-56e3-54e3-8661-14910418e205", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fcf3aa81-d455-5949-80c3-1b57f7e5e6d4", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a9d2c387-8d3c-55fe-ab77-017edc5e5c09", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c639236c-124e-52d1-94cc-52e6f60836e2", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:89ec9e48-5877-52af-9264-6724c25b3544", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:22f7e2b5-f2a8-5d86-acc7-b11b38942286", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 16.2.12-tuxcare.4 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@16.2.12-tuxcare.4" } ] }