{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3fb6f1fa-6d68-5a3b-95f5-add406c9174d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/axios@1.6.8", "type": "library", "name": "axios", "version": "1.6.8", "purl": "pkg:npm/axios@1.6.8" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a0b2ea29-7735-5178-bccc-1738bc9d0ccf", "id": "CVE-2024-39338", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-39338 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:03d5cc8d-38e5-5694-b29c-acd7fb552c77", "id": "CVE-2025-27152", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27152 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:e8033ef6-d59c-5ce7-bfca-97efa49f3239", "id": "CVE-2025-58754", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58754 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:1512842b-c17a-5e78-8934-31187d4d768a", "id": "CVE-2025-62718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62718 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:a4f848d9-3dc0-54f5-bdcf-a1cbb0d1266b", "id": "CVE-2026-25639", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25639 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:441b3cac-639d-50bd-a199-fe913b44756f", "id": "CVE-2026-40175", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-40175 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:ebb505e3-bda5-5c24-92ea-36706bdb21f9", "id": "CVE-2026-42033", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42033 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:851d1024-0436-5b99-a7cf-01c2994c3783", "id": "CVE-2026-42034", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42034 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:0afc77a2-a512-5222-8c49-5217e25da3c5", "id": "CVE-2026-42035", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42035 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:3b9d9629-4c8b-5e35-8df8-84da84fbf7b0", "id": "CVE-2026-42036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42036 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:05a33b18-484d-57ef-970d-4e69cf2a315d", "id": "CVE-2026-42037", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42037 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:15c69b28-b1ec-54df-90b3-f11513ec6cb9", "id": "CVE-2026-42038", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42038 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:e0c8ff52-bc02-5ea3-8b8b-f5ab5694e761", "id": "CVE-2026-42039", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42039 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:e2121eeb-641c-58df-a38d-8c8023cbeca0", "id": "CVE-2026-42040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42040 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:ace0edbe-6084-5fd0-90dc-d2723cac88d0", "id": "CVE-2026-42041", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42041 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:75818e7c-b60f-5883-ae6d-4abf50ffa5b5", "id": "CVE-2026-42042", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42042 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:56d787b0-9530-5005-92b9-447e214b564f", "id": "CVE-2026-42043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42043 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:32fde97d-6f19-5ac9-a377-a28538591f35", "id": "CVE-2026-42044", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42044 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:1e3d4bc7-2232-5072-ad5f-fa3dedf0dc68", "id": "CVE-2026-42264", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-42264 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:cb1541b9-4c7b-51c9-bf7b-d4f6f535446e", "id": "CVE-2026-44486", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44486 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:16e6b3f6-4762-5ce3-8ead-ff76a52979c3", "id": "CVE-2026-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44487 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:82edc849-cc55-5f74-8dd1-a933d0209265", "id": "CVE-2026-44490", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44490 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:2488681f-b30f-50af-9482-e3e3314805c1", "id": "CVE-2026-44492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44492 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:990b5916-1275-5643-9a25-e0bacd2d2840", "id": "CVE-2026-44494", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44494 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:f685b06c-3637-540f-9a3a-632a18108579", "id": "CVE-2026-44495", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44495 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] }, { "bom-ref": "urn:uuid:cbaac2ab-b89e-5f1b-85ab-efe111132343", "id": "CVE-2026-44496", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44496 affects version 1.6.8 of axios." }, "affects": [ { "ref": "pkg:npm/axios@1.6.8" } ] } ], "dependencies": [ { "ref": "pkg:npm/axios@1.6.8" } ] }