{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:aad65163-67dd-53e2-9476-e1a97d13aa9c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.2-tuxcare.3", "type": "library", "name": "jspdf", "version": "2.5.2-tuxcare.3", "purl": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:104d89a2-54b7-55a0-a01b-95f8449b6410", "id": "CVE-2025-68428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68428 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:989ccd89-93c0-5c6f-a099-cd88b9f77612", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06ad6a25-f196-5210-b520-101a37777927", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a74858b1-c09a-538a-bd70-dece766e8bd4", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c3375777-6995-5b74-a811-e621ad401131", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b83ae74-2a17-5f17-a249-2a2e509826f4", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5b0217e9-0cd5-52cf-8c81-1f873007e6aa", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5388c239-bc7c-5069-b81c-fa7d73c63163", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92422c8e-03cd-5903-b6f4-02258fea9b4f", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c885f60e-dc89-5d55-82b9-733075af9e90", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.2-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.3" } ] }