{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:568e93d1-a77a-5207-855c-1d130f901eb1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare", "type": "library", "name": "pypdf", "version": "5.9.0.post5+tuxcare", "purl": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7cc02491-63fc-51d6-8036-c04f6a6d2be1", "id": "CVE-2025-55197", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55197 is fixed in version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:ef1a4cb3-5939-5181-944e-1886adc70c7a", "id": "CVE-2025-62707", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-62707 is fixed in version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:e4e8b8a6-b09e-5f77-8c16-a8de1fbb27fd", "id": "CVE-2025-62708", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-62708 is fixed in version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:6bbcdddb-0f31-58f2-8172-fc839859d65e", "id": "CVE-2025-66019", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66019 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:f4b0ed6f-447c-54fb-9fc6-51c06cdc4ec4", "id": "CVE-2026-22690", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22690 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:684011e3-3445-5d7e-8d6a-cc4951d3c7fc", "id": "CVE-2026-22691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22691 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:d18c820f-b891-5076-a1ee-251eb117ceee", "id": "CVE-2026-24688", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24688 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:02b58e27-a2d7-5781-939c-67cb1a4a841d", "id": "CVE-2026-27024", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27024 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:86191981-029b-5fd7-b93f-8cde6cf538d4", "id": "CVE-2026-27025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27025 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:011aeea6-6edf-50fe-90da-661fbfc3093f", "id": "CVE-2026-27026", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27026 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:2385b72c-cb9d-5f1b-ad43-aa4d8fcaef34", "id": "CVE-2026-27628", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27628 is fixed in version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:018fccab-2ed1-5c69-8278-e3c174132d1f", "id": "CVE-2026-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27888 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:224f28b8-901a-56b2-9e9f-d37810b5ff0c", "id": "CVE-2026-28351", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28351 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:66f73b47-4e1f-5807-ad74-1a5ef57049b5", "id": "CVE-2026-28804", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28804 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:856fd14a-aa85-5f49-bfbc-37f955fe90d5", "id": "CVE-2026-31826", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31826 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:444c5f62-e096-56d6-89f1-9bc2de2cfec1", "id": "CVE-2026-33123", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33123 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:18eb934f-f76c-5a5d-a246-5a44af3d2d21", "id": "CVE-2026-33699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33699 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:14395795-2de6-5f71-9091-bb2428c8d9af", "id": "CVE-2026-40260", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40260 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:f7d65f5e-09a5-5452-907e-eeb0168504fa", "id": "CVE-2026-41168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41168 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:a5f358f4-991f-59e7-a505-28cafdff81f9", "id": "CVE-2026-41312", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41312 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:c68f1760-6011-5378-bf34-3d0072f76acb", "id": "CVE-2026-41313", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41313 is fixed in version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:15ac5baa-a84e-526c-baec-7b37c9bdb933", "id": "CVE-2026-41314", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41314 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:a785af7b-cb09-5e9e-89df-0864b38b5ad3", "id": "CVE-2026-48155", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48155 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:cf0308df-e7a7-5369-b10e-7411db5c8f07", "id": "CVE-2026-48156", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48156 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:8a8e357a-5309-5c34-a9d5-c2ee8a14f5ff", "id": "CVE-2026-48735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48735 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:3f75fff6-a6ee-5f78-9995-df4149004630", "id": "CVE-2026-49460", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49460 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:9b2d312e-808e-5af1-a3aa-b765844f4394", "id": "CVE-2026-49461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49461 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:2476480d-d26a-532e-bcd4-04c882ca338e", "id": "CVE-2026-54530", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54530 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:d446aa50-ee1c-54a4-804c-b6f94a1362ce", "id": "CVE-2026-54531", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54531 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:93aa1dae-0317-5dd0-a1fa-787ddbd5e327", "id": "GHSA-4pxv-j86v-mhcw", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4pxv-j86v-mhcw affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:1100f2a9-94e0-5823-b6f5-60aaa239771c", "id": "GHSA-7gw9-cf7v-778f", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-7gw9-cf7v-778f affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:8bbdac3c-61be-5a37-b386-c7f139654aae", "id": "GHSA-9m86-7pmv-2852", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9m86-7pmv-2852 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:5bf4776b-ed3f-5e66-9fd6-f1bee360ff4f", "id": "GHSA-jj6c-8h6c-hppx", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jj6c-8h6c-hppx affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:cb64fdfe-bdd2-5826-91a0-b2378003fdb7", "id": "GHSA-jm82-fx9c-mx94", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jm82-fx9c-mx94 affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }, { "bom-ref": "urn:uuid:b20c38b2-782f-5817-a55f-5cb310da487e", "id": "GHSA-x284-j5p8-9c5p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-x284-j5p8-9c5p affects version 5.9.0.post5+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:pypi/pypdf@5.9.0.post5+tuxcare" } ] }