{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3bccb4e6-0394-561e-b567-d7c95e3efe6a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1", "type": "library", "name": "webpack-dev-server", "version": "3.11.0-tuxcare.1", "purl": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4f4d1dc4-68d9-5fbd-9a95-8a8eca1b7e02", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d34ad88-fde4-570d-9a44-12920d238bfe", "id": "CVE-2022-24771", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24771 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:344f8f09-1f49-52d3-bf61-85634e58a395", "id": "CVE-2022-24772", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24772 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98bf605d-a495-5c6f-ac35-d2417bb00f20", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92a73f59-bc72-51cb-bcd9-6f5daceb1113", "id": "CVE-2024-21536", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-21536 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f7fb061-fbf0-5fed-b74d-0271db41a9b4", "id": "CVE-2024-29180", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29180 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2755ffcf-0d15-51eb-b25a-24638dda29da", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd81ce39-c087-5415-a413-4e457533fab2", "id": "CVE-2025-30359", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-30359 is fixed in version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:919bee56-984a-5427-9031-3d990ca184f3", "id": "CVE-2025-30360", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-30360 is fixed in version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffafd426-d005-57ef-9b67-446f16b342a0", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db41896e-eca3-51e5-a463-dfb1b4979458", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22a84dee-f8a1-5b21-9841-dcdc60f6e884", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e21786e7-379a-5ec5-b402-e250009356fc", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebc7838d-2ccd-5b42-b9fc-41f66792798a", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:feb5e6a3-7c6b-5e38-80a9-e95698bb0713", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:59527db3-80f6-5616-b666-6292acf75cae", "id": "CVE-2026-6402", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-6402 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3057bbe5-a943-5930-8965-085bd459a1a9", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b71af74-ceb2-55b0-ba24-fbac79425a91", "id": "GHSA-gf8q-jrpm-jvxq", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-gf8q-jrpm-jvxq affects version 3.11.0-tuxcare.1 of webpack-dev-server." }, "affects": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/webpack-dev-server@3.11.0-tuxcare.1" } ] }