{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:93cde3d8-7d38-5472-9075-50de7b46ae42", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40next/bundle-analyzer@13.5.11", "type": "library", "name": "@next/bundle-analyzer", "version": "13.5.11", "purl": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d25bcb4b-b390-5918-8ac1-f951202c2fcd", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:07eb9023-b3b0-514a-8cf7-1c77663daf70", "id": "CVE-2026-26996", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-26996 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:ff5f5b4a-46cb-5811-b52f-050fd12be62b", "id": "CVE-2026-27903", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27903 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:af27b1e3-a903-5846-9207-e137d9c6ab5e", "id": "CVE-2026-27904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27904 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:b1e7e8c1-0fae-5494-b03f-0514c2934bc5", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:681763e9-29a8-55a0-877b-e108761a9cab", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:2864164d-6c34-521d-aa8a-8cff389b0675", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:13191869-b395-58c3-a601-ae9d2bad41a0", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:259eacb4-e0b9-5cc6-8b35-01e947b91204", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:11cf706f-bbdb-53a2-a4a2-aadfe76045aa", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:5357bc6f-6b3d-54eb-a398-8e0799a0b3d7", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }, { "bom-ref": "urn:uuid:22aaa22e-69c1-5e4b-99a4-0bd82f18713c", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 13.5.11 of @next/bundle-analyzer." }, "affects": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40next/bundle-analyzer@13.5.11" } ] }