{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d1b8caad-1a67-511e-a3d6-d3b1ccb8ed4d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@18.2.12", "type": "library", "name": "@angular/upgrade", "version": "18.2.12", "purl": "pkg:npm/%40angular/upgrade@18.2.12" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a35737c2-8850-5033-99a5-dbd708294648", "id": "CVE-2025-59052", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59052 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:ea89dc9d-49e2-53b4-aaca-3799a8e59636", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:709f353a-34ee-5596-9af4-9249ed18c7a0", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:095a1982-666b-5625-9a43-176614ebdce6", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:a8e2db7c-f350-5117-a119-2cf7070afe21", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:50f61c66-bde7-59da-83b8-0b037a178cef", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:657f4a3a-47d1-5868-8bc6-891219309579", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:e18bced3-ddae-5793-a96b-7d9b6d8f3879", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:d49e7d2c-fd2c-59c2-bf36-f2b29a366e67", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:38436f36-3a3c-506c-83f8-5efcce7b2a4a", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:b324b1b1-d559-5048-8165-62e49924f29a", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:29ff2e0b-664e-59d1-86b0-7c1d90b2dd45", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:fc0273eb-fe40-5231-8c6b-fae25323b59d", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:77f5dbc6-1130-5623-b7c8-a6abb0c9e87b", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:498d2a79-f07a-5dde-8080-665dbdd88f59", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:bd31a89c-8a48-5de0-9d7e-fbf6f2177ebb", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:347b820d-c7d2-5ac1-a292-7ac1e73c5f62", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:64c2b474-3632-58b8-95a8-bee214d39d3f", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:a6d595c0-bd66-5394-a316-169128bb0ea9", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:7d533e18-34ed-5cea-83a3-95f4fa07b42a", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }, { "bom-ref": "urn:uuid:c99d4d34-4822-5e2b-a110-abc06bf70ba0", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 18.2.12 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.12" } ] }