{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1cf11b59-c6e9-564a-8716-959f7ac30604", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2", "type": "library", "name": "@angular/upgrade", "version": "18.2.14-tuxcare.2", "purl": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fa14095e-70a0-572a-8590-b685b7a7b90f", "id": "CVE-2025-66035", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66035 is fixed in version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d505e2db-9ff8-5b06-a88b-7f0f5c5db582", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:554a78f5-838c-518f-b475-8fc073e19c90", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:183578bc-2ae0-591c-9cca-8187f8ea8613", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f358682-0861-581c-a4a6-b0d49e5b3dca", "id": "CVE-2026-32635", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-32635 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cae4f35b-b27c-5cb6-a74d-0e2b62e47263", "id": "CVE-2026-41423", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41423 is fixed in version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8bedcb5-757d-56c4-9e30-eb2ffd324163", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72ef8266-3944-5fc0-8c80-f34858776496", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0c08bdc-0b4d-5a65-b6eb-9585f77b3978", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d39ca91e-5661-5883-8e6e-caa4d43b356a", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4f1117cd-8b35-5d1e-8897-e1b8561240b5", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a41314e3-c6a7-5e7f-b1ca-e251f41a1888", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2afb29e6-2d2b-5425-9429-d36c7ea25972", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2c8f02f2-a4dd-5154-9bc5-0e50f50460af", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eae772b9-e82e-5736-a247-727de6df71ea", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99919737-a4b6-5a92-ba71-9f05c5e1cf6a", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e70113ee-6372-53fa-afc6-aa21a69f869a", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d6efa80-0835-5f52-b3dc-7347dd155010", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6323dda-ce5a-5c8e-8509-6ef86b723174", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aae5eda0-03e0-5167-a7c3-6a1785a6bfbb", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:221b4873-31ec-54c0-81e3-164c24031088", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 18.2.14-tuxcare.2 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@18.2.14-tuxcare.2" } ] }