{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:313067df-b065-564d-8fc5-7766d802e576",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4",
      "type": "library",
      "name": "@angular/upgrade",
      "version": "17.3.12-tuxcare.4",
      "purl": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:dc97ea61-7774-5bad-afb6-9f720a37c50f",
      "id": "CVE-2025-59052",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-59052 is fixed in version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f676e539-210c-5a27-806b-c9a6bd5c4a2e",
      "id": "CVE-2025-66035",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-66035 is fixed in version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0a13e26c-0223-5a98-a206-7aa48caac4a5",
      "id": "CVE-2025-66412",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66412 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3026e09c-9139-532c-b6da-f6ab07f2a7f8",
      "id": "CVE-2026-22610",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-22610 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5da2d078-124c-5651-a02a-4c9e04786990",
      "id": "CVE-2026-27970",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27970 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:25c58f93-a926-511e-9b1c-d5fb2eda78de",
      "id": "CVE-2026-32635",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-32635 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8518b2ac-f02e-5de3-924d-7bdcf5cb7df3",
      "id": "CVE-2026-41423",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41423 is fixed in version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:71ced514-d96c-5d46-beed-029098d5467c",
      "id": "CVE-2026-46417",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-46417 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d0ab21ff-14d4-5fcd-ba4c-86b8e78e2c4e",
      "id": "CVE-2026-50168",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50168 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c36d155b-06a1-53c2-89d0-d46f2b5d4a33",
      "id": "CVE-2026-50169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50169 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0762bd32-535e-5b20-b13f-fcd6900e9f71",
      "id": "CVE-2026-50170",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50170 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b3c760de-4bfc-5cd5-b960-030661ee6774",
      "id": "CVE-2026-50171",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50171 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6945ff12-7486-5692-b2c9-c4468766e79b",
      "id": "CVE-2026-50184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50184 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fca69faf-d08d-5a55-89a9-ff390ff1b5e5",
      "id": "CVE-2026-50555",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50555 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7a279391-cb29-52a2-9240-abd344fb8f24",
      "id": "CVE-2026-50556",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50556 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6d62de10-d1f7-5f0a-9c64-f02cf76158a2",
      "id": "CVE-2026-50557",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50557 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3bb9ff5e-73ec-5ca5-b487-4acdf4a0167b",
      "id": "CVE-2026-52725",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-52725 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7839b9a4-32bc-5f75-8664-6815beec1e10",
      "id": "CVE-2026-54264",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54264 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3414692d-9ad8-585a-98ac-961cf6f0d261",
      "id": "CVE-2026-54265",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54265 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:dbe0ed55-54c3-559a-8a7a-aef3ad465985",
      "id": "CVE-2026-54266",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54266 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ef2b7c08-7e1c-538a-85b4-607363c6294d",
      "id": "CVE-2026-54267",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54267 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:496c7c1e-47d2-5091-b9aa-53027bca3ef1",
      "id": "CVE-2026-54268",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54268 affects version 17.3.12-tuxcare.4 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40angular/upgrade@17.3.12-tuxcare.4"
    }
  ]
}