{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:31a56812-bd17-5825-8d48-c6982b08f2e4",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6",
      "type": "library",
      "name": "@vitejs/plugin-legacy",
      "version": "4.5.5-tuxcare.6",
      "purl": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:0350cc99-157c-5a81-b9ee-02a9180f33cf",
      "id": "CVE-2024-23331",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-23331 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:6179de1e-7f3d-59b4-acb9-4c7489984097",
      "id": "CVE-2024-31207",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-31207 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d66e5bc0-6f07-5f45-aa70-0d9e92e27129",
      "id": "CVE-2024-45811",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45811 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5a3cb5c6-bd35-5885-82de-c77b052d1a95",
      "id": "CVE-2025-24010",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-24010 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2ff9b502-1d20-5844-b840-23efceaa8796",
      "id": "CVE-2025-30208",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-30208 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:3fa8b36f-ce79-5cab-a216-105ad1bd751d",
      "id": "CVE-2025-31125",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-31125 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4552e412-511e-5804-96b3-972d1b204994",
      "id": "CVE-2025-31486",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-31486 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4168febd-009b-585f-9142-2d9283754192",
      "id": "CVE-2025-32395",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-32395 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:72cae1d7-8181-5f55-8500-57e4741d716f",
      "id": "CVE-2025-46565",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-46565 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:359a5964-462c-50b7-bed9-1df43e4c6ad7",
      "id": "CVE-2025-58751",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-58751 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5fc7f7ac-5cbc-500b-a5d2-a93e620c3373",
      "id": "CVE-2025-58752",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-58752 is fixed in version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:bb1709b6-ed68-591e-962c-02cbec61d48e",
      "id": "CVE-2025-62522",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-62522 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f0e99b29-8835-502d-8ffc-f3e6401f0bc9",
      "id": "CVE-2026-39363",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-39363 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f5ff8768-ef62-5705-9729-a2d9cecba13a",
      "id": "CVE-2026-39364",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-39364 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:2677fb7a-4ff9-55fc-9756-d5a9e2f313d3",
      "id": "CVE-2026-39365",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-39365 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:1061690a-3f7b-56b2-97c6-d57397198508",
      "id": "CVE-2026-53571",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-53571 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:96b49ec1-de29-583f-9d3a-6faaddff2887",
      "id": "GHSA-4w7w-66w2-5vf9",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-4w7w-66w2-5vf9 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:ded74b26-1538-545c-80c6-e9f2ffaaf1e8",
      "id": "GHSA-67mh-4wv8-2f99",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-67mh-4wv8-2f99 affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f9357ee0-f7bc-55c6-b75e-8889d8126dab",
      "id": "GHSA-gv7w-rqvm-qjhr",
      "analysis": {
        "state": "false_positive",
        "detail": "Vulnerability GHSA-gv7w-rqvm-qjhr is a false positive for @vitejs/plugin-legacy 4.5.5-tuxcare.6. GHSA-gv7w-rqvm-qjhr in esbuild 0.18.20 is withdrawn. Refer to esbuild 0.18.20 for details."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f7896cde-f3a3-5ca3-af04-93043fca2cad",
      "id": "GHSA-v2wj-q39q-566r",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability GHSA-v2wj-q39q-566r affects version 4.5.5-tuxcare.6 of @vitejs/plugin-legacy."
      },
      "affects": [
        {
          "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/%40vitejs/plugin-legacy@4.5.5-tuxcare.6"
    }
  ]
}