{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3af2e227-c45f-5ba6-a35e-670b83d04273", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40next/mdx@16.0.6", "type": "library", "name": "@next/mdx", "version": "16.0.6", "purl": "pkg:npm/%40next/mdx@16.0.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f9a23e18-6c66-507f-95c8-afbf8927f12b", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:c5153753-6949-54eb-bc5f-6d9cf08a000b", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:22dda9c6-8c4d-5f9f-89ec-aba2fc436089", "id": "CVE-2026-27977", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27977 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:43cfc20b-febb-5989-95e8-8f08ce2ae59a", "id": "CVE-2026-27978", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27978 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:83442447-55bb-5aa6-a1aa-6b9f7415506c", "id": "CVE-2026-27979", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27979 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:27f4540c-6594-58d8-b117-e7cfc98f0454", "id": "CVE-2026-44574", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44574 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:d2e37982-e028-5760-9724-a583d099390f", "id": "CVE-2026-44575", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44575 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:72143b28-a898-58a0-87cf-73e9b08916ca", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:9d234af6-ec12-535a-aa3f-64ac4c2b8dbb", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:2ab804af-656e-5606-8ac5-274bbbf3f9b0", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:06a09181-9f5c-567c-adb3-e8bff5bee671", "id": "CVE-2026-44579", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44579 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:e12a5f72-fc4c-52ea-8dca-74a4cb8723a8", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:6c46e64b-af1c-5364-a10a-98453ba99983", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:c7ceeafe-53f5-5723-8844-2be44dbbbc2d", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:a627be28-df52-5f26-8d0d-d4e8db815874", "id": "CVE-2026-45109", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-45109 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:abcbaee9-6d47-5f01-906b-c920221505cb", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:b8c50313-7a15-52d4-9106-1f925b4cc4fb", "id": "GHSA-9qr9-h5gf-34mp", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9qr9-h5gf-34mp affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:5d80d37e-ab97-5c30-ac6b-93ce3238ea8c", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:df6fedac-e42f-5ff6-b3b7-b89aa06020ab", "id": "GHSA-mwv6-3258-q52c", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-mwv6-3258-q52c affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:fdb69638-f5cd-5ff2-a689-225c38e68092", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }, { "bom-ref": "urn:uuid:491ba170-d862-5132-9e59-6e5f7ff56008", "id": "GHSA-w37m-7fhw-fmv9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-w37m-7fhw-fmv9 affects version 16.0.6 of @next/mdx." }, "affects": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40next/mdx@16.0.6" } ] }