{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9d52a0b3-e10e-5544-a02f-b0d61940b9cd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1", "type": "library", "name": "@angular/upgrade", "version": "4.4.7-tuxcare.1", "purl": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:22e6c692-4924-5fce-9155-103c145caa82", "id": "CVE-2021-4231", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-4231 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a4ee4ab-8e3b-5a2c-8825-81cd9d5ca071", "id": "CVE-2025-66035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66035 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c9e6332a-ccef-51f9-b436-37aa7f46df01", "id": "CVE-2025-66412", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66412 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da476445-aab2-5dc8-9065-3c8a1b4051cb", "id": "CVE-2026-22610", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22610 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35d839b8-5fac-52ce-a927-b46f6ff9ca42", "id": "CVE-2026-27970", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27970 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d57a0567-80fd-5bc6-b6f7-3b09fd987c5a", "id": "CVE-2026-41423", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41423 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb072667-902f-5af2-a50e-5eb555997ff7", "id": "CVE-2026-46417", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-46417 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91350178-586e-5134-b16e-fd8fd8ef20f8", "id": "CVE-2026-50168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50168 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f92e414-b512-5206-9909-bc16d98c4cf7", "id": "CVE-2026-50169", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50169 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7576e812-f10b-5ae2-860b-dc97f2bc2fc6", "id": "CVE-2026-50170", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50170 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cd0ac14-a54d-5d33-b9f2-51fbe6b4d2a9", "id": "CVE-2026-50171", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50171 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe833d6a-41c9-5e4e-9b9c-4c97bc5b5900", "id": "CVE-2026-50184", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50184 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ffbeaa4-beac-5797-89c0-e1f526f703e2", "id": "CVE-2026-50555", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50555 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e369a397-c78b-527c-8d52-bd1bc3f2d785", "id": "CVE-2026-50556", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50556 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f613d42-1620-5120-bfba-e43fbf203b13", "id": "CVE-2026-50557", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-50557 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5c7dae01-6700-51b2-b183-22d59fdd94e1", "id": "CVE-2026-52725", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-52725 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:85f624e8-6dab-5329-a864-79077e807b64", "id": "CVE-2026-54264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54264 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fc81faf-cc0a-55c0-8acf-1d17c8a90a8f", "id": "CVE-2026-54265", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54265 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62ef49a3-a766-537d-800f-54b22a3b5f29", "id": "CVE-2026-54266", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54266 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c21f42d6-fe7f-59ea-8fee-70826e12d6ff", "id": "CVE-2026-54267", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54267 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88c35338-63a9-5d0b-9ed6-16c931dd79ec", "id": "CVE-2026-54268", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54268 affects version 4.4.7-tuxcare.1 of @angular/upgrade." }, "affects": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40angular/upgrade@4.4.7-tuxcare.1" } ] }