{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ba64668e-a8f1-5811-8aca-ace0a972e8a7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/%40next/third-parties@14.2.35", "type": "library", "name": "@next/third-parties", "version": "14.2.35", "purl": "pkg:npm/%40next/third-parties@14.2.35" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cec4cd8a-af4a-5181-9225-bf367b04eb33", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:0898ff9b-2685-5552-8610-f6c3a9f1644c", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:d9b88b9b-3097-5419-aa2a-21be83592c63", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:f51ecb1e-47a7-5e94-92a9-0ab26eee2828", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:e197c2f5-aa32-5bca-b4d5-1c0d3e02c09f", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:1168b9e0-042b-5a93-a887-a7a0daf429e8", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:411d8d44-f120-57bc-b937-c847c1e343c6", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:abd85f16-74a8-5843-9695-360291cce2bb", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:c8d190f3-0891-5790-9fee-f5d70857deee", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:7b4ab714-72d7-5fe7-ae28-431d8b910091", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:b69f603a-c299-5fa7-b98a-22b260cf0865", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }, { "bom-ref": "urn:uuid:1e8c0eba-417f-5cfc-a76b-9f35a6b51630", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35 of @next/third-parties." }, "affects": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] } ], "dependencies": [ { "ref": "pkg:npm/%40next/third-parties@14.2.35" } ] }