{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7373be71-a3a3-5a43-a1c8-4a16554c1694", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "18.2.12-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6f76c342-e400-51dc-aebb-e78749672c5c", "id": "CVE-2025-59052", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59052 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ec29b4b-65a7-594e-9bb4-2c55e1a66faf", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66eb9e26-8145-5cc0-8f5f-e0ac30017308", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0f976db1-dbc7-58c6-b35d-5365fadca002", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:161edc4e-d57b-5b18-8d76-42de9c417c3c", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:602db7cb-6118-5755-a9ea-539aea7508cc", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22400a4a-69f6-5b1c-94c2-42e86a726ddb", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:627ee7b0-ca7d-52be-b8d0-0f49a4b1b1d9", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a624df0-39af-517b-b7f5-8132b6cf5c8d", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e23e850e-59e1-5958-ad4b-3170b8f86262", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d041868-4310-5d61-9dcf-42305edc99b1", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5bd6913-d370-5493-a109-76d637d9e9da", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9dc8821-295a-516f-a529-18e5fe062977", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c587eddc-e9ef-57d2-bfa8-8ed295357b73", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0824d35d-87a2-5f47-aac4-e8b18041760d", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4040a8e0-4df3-58c3-90f4-41f481d275e2", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62aff3b2-17d5-5e40-8fda-33ee3329e9a9", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cda8809d-5804-5af4-97ed-83f0412ba139", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c73991e-34ab-5e6b-b4db-0bc8d4ba1c1c", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76e7ebe8-7da3-589b-b758-7d15d448ca2a", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38808743-2e66-5da1-a797-1ebc6323dad4", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57480e15-c51a-5dde-90e6-cb29f7c6b253", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 18.2.12-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12-tuxcare.1" } ] }