{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:26414e9c-8917-5eeb-b686-a0fbdc6576fe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/express@4.17.1-tuxcare.1", "type": "library", "name": "express", "version": "4.17.1-tuxcare.1", "purl": "pkg:npm/express@4.17.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a895f47c-9e53-5349-87a0-086b5e5d77de", "id": "CVE-2022-24728", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24728 is fixed in version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:859550a1-8600-545a-9670-8a1b98277431", "id": "CVE-2022-24999", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24999 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0c8417f-c79a-5f62-a258-3f3754a8dc2f", "id": "CVE-2023-4771", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-4771 is fixed in version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ca384ad-34b1-52cf-9ee4-40329d9b0427", "id": "CVE-2024-29041", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29041 is fixed in version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f91307a-ba36-5e69-a855-42cdf5ea0e09", "id": "CVE-2024-43407", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-43407 is fixed in version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eed476b3-590d-56c8-b058-0b7d8d005298", "id": "CVE-2024-43796", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-43796 is fixed in version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35127f2b-c047-5fb9-b361-dddd82bd70a7", "id": "CVE-2024-43799", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-43799 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea540658-3d8b-5a01-a946-acbc310a4e5d", "id": "CVE-2024-43800", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-43800 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58ef2b21-5843-5c49-a609-6e516c9db1a1", "id": "CVE-2024-45590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45590 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4aa640b-b499-556b-8f66-742f9a8b26e0", "id": "CVE-2024-47764", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-47764 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2182bde-d4b7-5d88-b263-85d6aade151c", "id": "CVE-2025-15284", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-15284 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66c92bae-d74f-573e-a11d-9b4e3aae64b5", "id": "CVE-2026-2391", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-2391 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3600072-d28e-54be-81b9-0e6d98d41b5a", "id": "CVE-2026-8723", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-8723 affects version 4.17.1-tuxcare.1 of express." }, "affects": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/express@4.17.1-tuxcare.1" } ] }