{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:8998b20a-1e59-55ee-a433-02a96649c42e",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3",
      "type": "library",
      "name": "@angular/upgrade",
      "version": "7.2.16-tuxcare.3",
      "purl": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:7ef26953-71d6-5dd3-b9a2-bd2f5f352f08",
      "id": "CVE-2021-4231",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2021-4231 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:154db307-eb23-5993-85c8-3e7efc49846c",
      "id": "CVE-2025-66035",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66035 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:438705d9-ae7e-5cea-8175-9c5e88a5b26b",
      "id": "CVE-2025-66412",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-66412 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3d57aaf4-6852-58cf-8232-5e6f866188b2",
      "id": "CVE-2026-22610",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22610 is fixed in version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:538c69a9-4794-593a-8615-a20650ea857a",
      "id": "CVE-2026-27970",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-27970 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:12133f69-4c95-5066-b3c2-ea3e88dbaf49",
      "id": "CVE-2026-41423",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41423 is fixed in version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8685af3d-416b-5bd8-9d22-4024fdb4e3df",
      "id": "CVE-2026-46417",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-46417 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:8b428393-137c-5fb3-9868-7ac837d4d67e",
      "id": "CVE-2026-50168",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50168 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:aa35cead-2356-55cd-b7e2-aaef11f89c19",
      "id": "CVE-2026-50169",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50169 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3d2e31e0-ffd5-5802-b9b9-664ab6ea0c7b",
      "id": "CVE-2026-50170",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50170 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:647dd393-7e3d-5856-a91c-158b2a4ea1cc",
      "id": "CVE-2026-50171",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50171 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c887881f-a9dc-5525-9a4f-41c26183ab54",
      "id": "CVE-2026-50184",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50184 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d073d580-1c1b-5b93-b111-fb9d8fdc450e",
      "id": "CVE-2026-50555",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50555 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6593123e-e625-5b6b-95d6-14baa6947d23",
      "id": "CVE-2026-50556",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50556 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4893014c-ed37-5a16-9dcf-5b184a779c82",
      "id": "CVE-2026-50557",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-50557 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:547b0ab0-8db7-5354-a6cf-968212eb81d4",
      "id": "CVE-2026-52725",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-52725 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7057f483-e0c4-5ec8-805a-521222fd779b",
      "id": "CVE-2026-54264",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54264 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:73a32bab-778c-51b9-8ce7-128ccc3c2f22",
      "id": "CVE-2026-54265",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54265 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3d5ccf94-e0b9-5c06-9905-a9214cbf9225",
      "id": "CVE-2026-54266",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54266 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0e6d0dd2-2385-5de4-8637-fa6126e47312",
      "id": "CVE-2026-54267",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54267 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d2c3a57a-4a0f-524e-b12d-599b1a4203da",
      "id": "CVE-2026-54268",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-54268 affects version 7.2.16-tuxcare.3 of @angular/upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40angular/upgrade@7.2.16-tuxcare.3"
    }
  ]
}