{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d5bd6acd-7d76-5de3-98b5-d7b51abdd41b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2", "type": "library", "name": "@angular/upgrade", "version": "17.3.12-tuxcare.2", "purl": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:272d2f9d-88c1-5d7b-8dab-fd99042f8915", "id": "CVE-2025-59052", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59052 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec93d942-9374-5ff8-b2bd-7dd65be50005", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b3492852-c985-5a9b-94c0-b9df0f818c31", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6df85f64-1659-5076-9836-09fe965481d7", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8859804-b6bd-5bb9-8d8d-1fad3ef9cd9f", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1c5df36-748f-5c68-ba9d-8b9dfeda0b3f", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43aa1c7b-e929-53fb-82d5-9815ebc3307f", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6e963ed-24da-558e-b242-84fb024f8638", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a12d607-c29a-5a83-8b76-632f8365ca8e", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d5db572-7fa8-5359-8256-b60e987fe0f5", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca103c5a-6c34-5de8-b6d4-651852568e4c", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c91d7ca6-ea0d-5780-856a-9a68b36fe656", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4067541e-a4f6-57ff-a02d-29adc7cbf64f", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a73af51-c1d5-5547-9ff1-d38b5cfb28d2", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c0a284fd-110c-548c-b99a-30977a07bbec", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7011cac6-0ad7-5be8-a121-81ae80f60080", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac93c045-b325-5fc7-a02e-9e3001d7435d", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0267284d-4cba-5728-87a8-bae630991d5c", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bea52b22-6659-543c-9edd-a3f288b5d603", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f106360-bb76-5430-b4bd-308a813529df", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07caca70-4cdf-56dc-8d93-d79bd8bd737c", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:436c8cb0-5886-5e0e-a125-5c3ea27d9cd5", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 17.3.12-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.2" } ] }