{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9e659d9a-2bf1-59b3-bd76-b8eb51a65fec", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/next@14.2.35-tuxcare.3", "type": "library", "name": "next", "version": "14.2.35-tuxcare.3", "purl": "pkg:npm/next@14.2.35-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fbf2a5b6-4936-53c8-bbec-cdd48655ccfe", "id": "AIKIDO-2026-10095", "analysis": { "state": "resolved", "detail": "Vulnerability AIKIDO-2026-10095 is fixed in version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bc5d478-fb9c-56b8-abe9-64b616bff510", "id": "CVE-2025-55173", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-55173 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:520242ee-4db9-5a80-80fe-ea26510a4cd6", "id": "CVE-2025-57752", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-57752 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5d30856-94cb-59d9-8c5b-eb5d3c522c3d", "id": "CVE-2025-59471", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59471 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a21305d0-8791-5e24-bce1-c1f006389c8b", "id": "CVE-2025-59472", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59472 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e0a6d6e-4018-5778-a913-c4d4331b6957", "id": "CVE-2025-64756", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-64756 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5761bc68-5b17-5cda-93dd-c4da039e6fd7", "id": "CVE-2026-27980", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-27980 is fixed in version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1fb5607-2d30-59f5-8ec9-b0e4b268b9cb", "id": "CVE-2026-29057", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-29057 is fixed in version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:99eeead8-7bbf-59bc-8d0b-784b484adeb8", "id": "CVE-2026-41305", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-41305 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:507dee89-d427-5ec7-a09c-12e2c74cb5ef", "id": "CVE-2026-44572", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-44572 is fixed in version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3a85afb-f5b6-5fe2-acfc-f4ceb4387f23", "id": "CVE-2026-44573", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-44573 is fixed in version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ec2c1a0-8e41-5f3c-95a3-ef3391b09503", "id": "CVE-2026-44576", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44576 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:373e460b-5e6e-520b-b05e-681e7f711dd0", "id": "CVE-2026-44577", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44577 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4df49938-d221-5d45-8dff-9aac27e75fa8", "id": "CVE-2026-44578", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44578 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d120a910-6abc-59a8-975b-fa07cf4e762c", "id": "CVE-2026-44580", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44580 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06ad5d79-7566-54f5-bdf4-6f7a425afda9", "id": "CVE-2026-44581", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44581 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa8eb38b-bf42-58cc-a691-f26329574980", "id": "CVE-2026-44582", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-44582 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a28462dd-b569-5d00-99dc-f837cb9a0ff7", "id": "GHSA-8h8q-6873-q5fj", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-8h8q-6873-q5fj affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:68b9aec1-96e7-5ce5-9e65-325ca9e36912", "id": "GHSA-h25m-26qc-wcjf", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-h25m-26qc-wcjf affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c8907a4-9a9a-5944-90bc-2810f4bcbb82", "id": "GHSA-q4gf-8mx6-v5v3", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-q4gf-8mx6-v5v3 affects version 14.2.35-tuxcare.3 of next." }, "affects": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/next@14.2.35-tuxcare.3" } ] }