{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ac76298f-12c3-5ad7-94f3-25bd1de5bc97", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:pypi/pypdf@5.9.0", "type": "library", "name": "pypdf", "version": "5.9.0", "purl": "pkg:pypi/pypdf@5.9.0" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6f347a57-cded-5a59-8067-01fd29ff01a3", "id": "CVE-2025-66019", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66019 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:b43e8675-0077-5bbc-9d8e-8066efcb8d56", "id": "CVE-2026-22690", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22690 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:f64b31e8-8080-5084-acee-6dd030c04e97", "id": "CVE-2026-22691", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-22691 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:792335c9-b68e-56ea-8c3b-deec96120f52", "id": "CVE-2026-24688", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24688 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:73dff920-3835-53c6-be91-008cf84182bd", "id": "CVE-2026-27024", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27024 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:a3ac888c-8f2b-5028-94af-6eb60c689354", "id": "CVE-2026-27025", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27025 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:70102b12-77c2-5938-a94e-00a9cd180c08", "id": "CVE-2026-27026", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27026 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:c652f22b-598d-517e-8f17-19804cbbfe38", "id": "CVE-2026-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27888 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:6e984c12-2400-5f35-8382-a6d554773fa2", "id": "CVE-2026-28351", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28351 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:130bdff8-a3d3-58fe-a51c-e95da183a1a5", "id": "CVE-2026-28804", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-28804 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:d1cad3c2-c351-58f1-b39f-533f99cdb38d", "id": "CVE-2026-31826", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31826 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:509da126-3941-59a7-bb94-8d82e5205197", "id": "CVE-2026-33123", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33123 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:fdc7b9d4-e0a5-5d06-8384-09746cc65039", "id": "CVE-2026-33699", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33699 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:dbe324d5-072f-5d6f-8250-beec22ad0394", "id": "CVE-2026-40260", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40260 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:c2539825-e2ab-53a1-9d6f-d61739d3e42e", "id": "CVE-2026-48155", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48155 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:ddf74c77-a8a2-5b77-abab-b83c4a1dc65e", "id": "CVE-2026-48156", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48156 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:c4358498-b64e-5ae1-9d26-3e279d41b802", "id": "CVE-2026-48735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-48735 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:8f29d1b7-b5c7-54f3-8260-410d158adf37", "id": "CVE-2026-49460", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49460 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:f25a203e-a891-51ea-8a77-9342b893f079", "id": "CVE-2026-49461", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-49461 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:2913d883-19b4-5c08-b138-843e4aa72efb", "id": "CVE-2026-54530", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54530 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:1fd96465-b1c2-50f0-9c75-630a88fc0d4c", "id": "CVE-2026-54531", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-54531 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:a38ba052-bf30-556f-981f-5b52a783b9ca", "id": "GHSA-4pxv-j86v-mhcw", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4pxv-j86v-mhcw affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:db03acf4-9078-5344-9324-522f2ca8dc54", "id": "GHSA-7gw9-cf7v-778f", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-7gw9-cf7v-778f affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:a7ed4b66-bf0d-5930-8908-225dd8b511f2", "id": "GHSA-9m86-7pmv-2852", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-9m86-7pmv-2852 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:34221e5a-b583-5216-b0fb-e3e8e1185144", "id": "GHSA-jj6c-8h6c-hppx", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jj6c-8h6c-hppx affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:27a0493d-caad-5025-bc3c-0f3c6ccd84e5", "id": "GHSA-jm82-fx9c-mx94", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-jm82-fx9c-mx94 affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }, { "bom-ref": "urn:uuid:3c18de34-dd2c-5681-86a9-744e378fb6ae", "id": "GHSA-x284-j5p8-9c5p", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-x284-j5p8-9c5p affects version 5.9.0 of pypdf." }, "affects": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] } ], "dependencies": [ { "ref": "pkg:pypi/pypdf@5.9.0" } ] }