{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:936363d1-38b0-5d1a-8f73-5e7ad9fb9559", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/node-forge@0.10.0-tuxcare.1", "type": "library", "name": "node-forge", "version": "0.10.0-tuxcare.1", "purl": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:08269026-7762-5639-aa99-fe45344c33d6", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6364f3bb-9d1d-5575-b53f-5cb452e8b1d1", "id": "CVE-2022-24771", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24771 is fixed in version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:452e2361-9fb9-58eb-b6ad-bfdad0dc704c", "id": "CVE-2022-24772", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24772 is fixed in version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:685ecc7b-0f0f-5d70-b45d-f5cf2f443fc9", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1925ed3-8a1a-5898-8fc1-caa3ee1ab05b", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c72da921-9046-55dc-b820-f1296e10817b", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2825e06a-090e-5a02-b01f-33f71a69bb80", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a5fec1f-2fb1-506a-83f2-3c96c69e5e5f", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2aa015df-1c2f-5e54-9e68-0acfbc75060f", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5410af85-a5c2-5121-84ea-3ebea4971d91", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9edef4b7-8132-54cd-8ed8-e8435688fe31", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de58769d-7708-5a9a-9bab-bff699c292a7", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 0.10.0-tuxcare.1 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.1" } ] }