{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cbaa6c8a-51bc-5987-809d-d9e0076bb8f0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "17.3.12-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:ab8076d3-c58a-5c77-b1d6-1a99f67c62f9", "id": "CVE-2025-59052", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59052 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59946db4-1851-574c-b362-bba4068cccc6", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b771f013-ab46-5a5b-9bff-62fb13aebd58", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb86d306-0828-557a-810a-f206123c5bb7", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5938213b-eae8-57b6-a74a-c8114a74759c", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62b637ba-14b3-5b50-860c-a6da9c8ad1bb", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05c07715-2230-521b-a8d1-55301ade1513", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d4c4fe7-1f57-548b-8781-8d0d21f589f8", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4cd54d80-d14e-5c00-8173-4384afb97f4b", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9217a7a1-838b-5017-90b2-ee53b00f137b", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:179049c0-d56d-5d84-bb79-95912fbc2a35", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:04bc94e8-bb64-595a-9920-156a279def14", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35657eef-8701-5a51-a76f-6e4df9aad0d1", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c880242e-0be6-525c-ad9e-b55d51268cf7", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ed918ae-a669-5b27-bcca-9017f87455bb", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2ad11a7-12b4-5309-9ee4-ad19e57fdd0f", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21740dc8-430a-5e58-9c7d-db146f832908", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9604fa3f-5bfc-5168-88a1-bd0cf861b0ed", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c1eb9da-0c5f-570a-b662-9b7277072db8", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6663e8d-3741-560b-8cc8-cb0cd5fdc1ef", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3603da0d-fada-5869-a812-ab355aa890a2", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e94a7d4b-4d8c-55b6-a3c1-c23133b86cd2", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 17.3.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.1" } ] }