{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:92c0589a-3d68-5176-b2e1-7abe2f885cc0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "18.2.14-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0877b821-2fba-5f73-8167-a28c5a60a609", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db98da45-b030-5329-9bef-08a41032d15f", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fb63c5c-1341-57d2-a305-7827da7b583b", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:340d78a9-a779-5f86-910f-b10861742cf4", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78bf42ae-1fd3-561e-8ecf-ceda505251bd", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8560a910-b8ce-5cb0-addd-32c27ad1b596", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7e613fb-d67d-5bc5-81b9-51801397c1c5", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e122cb2-6ba8-552c-92ea-6dac195a85ba", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0421fe8-bf55-5922-9017-60a60b6283ea", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:485281a6-ba74-5b29-8993-6e195b8d1c18", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a37ec3d-7171-5dd0-b13c-a0883a7ee6ec", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f1c6b91-3c97-57ef-9be8-3669972dc601", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a6da0a9-325f-5f32-bccf-ea65e4b7864d", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfe64719-8fc1-5794-86d3-45108efe2d82", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:930f9145-e6c2-546f-b1e1-3b56da06cfc7", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f829c01f-1993-5811-bec4-9c69b3373553", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b54fdea-319a-5454-b15c-79146067b2d4", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06d5e560-2cd0-577e-99cd-41c672eebbac", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89883e3a-bf22-51ea-9844-4d39a011a57e", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:08701a96-cd63-5e47-aeb0-51f8bf74f627", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6000de24-3c3a-5b03-ba19-b3cdda698e3d", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 18.2.14-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.1" } ] }