{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:b24b7743-24fc-519b-81a5-9aab711a4df0",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40next/mdx@14.2.35",
      "type": "library",
      "name": "@next/mdx",
      "version": "14.2.35",
      "purl": "pkg:npm/%40next/mdx@14.2.35"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:ed09daa1-c66c-59c4-95d9-fd54f00b466e",
      "id": "CVE-2025-55173",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0ed20435-ee1c-5418-99fb-a125f8e5a4d6",
      "id": "CVE-2025-57752",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:63146f4f-e581-5dc9-a202-980b39d317fd",
      "id": "CVE-2025-59471",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c35285b2-314f-512c-ae1f-6c85b2d46094",
      "id": "CVE-2025-59472",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:b51f1cd1-c0dc-5a67-9667-a1705e3be0b1",
      "id": "CVE-2025-64756",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:e1f60647-4363-591f-983b-b1200499319e",
      "id": "CVE-2026-41305",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:67e64a2c-5a9f-507b-977f-38eb57db91cc",
      "id": "CVE-2026-44576",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:54382d10-b1ef-5d34-811f-4a772c2d35a8",
      "id": "CVE-2026-44577",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3be4e668-20ba-5216-ae15-04dab06ba83c",
      "id": "CVE-2026-44580",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2d49e211-847c-5046-a37e-90bd1ba54b02",
      "id": "CVE-2026-44581",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:de08f932-e3ae-5c91-b144-8d88190c154c",
      "id": "CVE-2026-44582",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3b8d9d4a-2863-5958-9f54-d7a5586d6e56",
      "id": "GHSA-h25m-26qc-wcjf",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of @next/mdx."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40next/mdx@14.2.35"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40next/mdx@14.2.35"
    }
  ]
}