{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d937d847-340d-59dd-bc5b-20531196f6bb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare", "type": "library", "name": "pypdf", "version": "5.9.0.post6+tuxcare", "purl": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3ee5dc82-1128-59e4-9f17-3c26e9fca563", "id": "CVE-2025-55197", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-55197 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:47fec6ea-0d9c-546d-b41f-084b3b1c4848", "id": "CVE-2025-62707", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-62707 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:2f4fa9ea-986a-5f0b-b25f-7b9846026cd5", "id": "CVE-2025-62708", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-62708 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:5c7755aa-8752-599a-adbb-32afa7edbf2d", "id": "CVE-2025-66019", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66019 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:9288bc89-78a2-54b3-96ac-6a0b37e53f35", "id": "CVE-2026-22690", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22690 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:7b962553-3054-547a-8f91-6af7140a8d6d", "id": "CVE-2026-22691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22691 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:681b4d64-d55b-51f5-b526-44691d42b03d", "id": "CVE-2026-24688", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24688 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:c434948f-f91d-5ee9-ab52-f81c07e938aa", "id": "CVE-2026-27024", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27024 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:c2bfb2f9-ca90-5a94-ab18-f851cee7a1a0", "id": "CVE-2026-27025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27025 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:4671333b-f8f7-5f7e-935c-e08e7e5579b0", "id": "CVE-2026-27026", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27026 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:a6d8d3c1-a2b7-5c98-bb4e-b42774147fdb", "id": "CVE-2026-27628", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27628 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:03f3081a-318d-5afa-a11d-7af309b7a806", "id": "CVE-2026-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27888 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:aa203a77-92c5-5d10-9264-04fb14c16b3a", "id": "CVE-2026-28351", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28351 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:0466ef86-9864-57d3-86cb-bff7cd21f904", "id": "CVE-2026-28804", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28804 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:1527761a-2433-50bd-8d4a-cbd0446c20c8", "id": "CVE-2026-31826", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31826 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:61ae47fc-e533-581b-9e9e-718ee972f183", "id": "CVE-2026-33123", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33123 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:b4394697-51f6-5a93-a131-caea99759c74", "id": "CVE-2026-33699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33699 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:49240f4d-b85c-5133-9ade-3f06149feea3", "id": "CVE-2026-40260", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40260 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:b932a841-0830-5952-9ebf-f98a21550ebe", "id": "CVE-2026-41168", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41168 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:8db99d35-5775-5e7a-920d-4f52423b52d4", "id": "CVE-2026-41312", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41312 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:e405fb41-2b2c-5544-b673-dc47baca73cf", "id": "CVE-2026-41313", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41313 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:ecb1dbb0-5039-5994-b0a6-aae0455a2d98", "id": "CVE-2026-41314", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41314 is fixed in version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:2f0075ab-b90f-5d36-bff1-e70e7aba149e", "id": "CVE-2026-48155", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48155 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:9f5867da-fe8c-5f78-a99b-fe05efc78c5a", "id": "CVE-2026-48156", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48156 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:2e975bd0-1005-5629-ada1-8aa33314b853", "id": "CVE-2026-48735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48735 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:711f5a6a-92ff-5b0d-9c58-96fa996c091b", "id": "CVE-2026-49460", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49460 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:815d9d33-e8a2-550b-8e28-eb88569f5f90", "id": "CVE-2026-49461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49461 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:15ec715a-0bfc-50e4-a3db-2ebe435f3604", "id": "CVE-2026-54530", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54530 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:0d24bb8b-f135-5ebd-b220-fbfb92b6ec32", "id": "CVE-2026-54531", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54531 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:2c1616d0-aefd-5fea-9515-0c9fb5fe837e", "id": "GHSA-4pxv-j86v-mhcw", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4pxv-j86v-mhcw affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:beae2978-e322-5618-b61b-90c211af6982", "id": "GHSA-7gw9-cf7v-778f", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-7gw9-cf7v-778f affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:c8b3db4f-45a1-57a4-94ae-ccb65c6d7e74", "id": "GHSA-9m86-7pmv-2852", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9m86-7pmv-2852 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:cb501a12-65e4-54d3-860b-dffd45d634b1", "id": "GHSA-jj6c-8h6c-hppx", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jj6c-8h6c-hppx affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:92286249-604d-55c7-a9c1-783c01cadfda", "id": "GHSA-jm82-fx9c-mx94", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jm82-fx9c-mx94 affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }, { "bom-ref": "urn:uuid:1c509f4b-93ba-5c57-a61f-42a85d459e8c", "id": "GHSA-x284-j5p8-9c5p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-x284-j5p8-9c5p affects version 5.9.0.post6+tuxcare of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] } ], "dependencies": [ { "ref": "pkg:pypi/pypdf@5.9.0.post6+tuxcare" } ] }