{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:d8bc7042-caa8-521b-ba69-b332f4a123b8", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.2-tuxcare.1", "type": "library", "name": "jspdf", "version": "2.5.2-tuxcare.1", "purl": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2eeaac22-ef1e-5c4a-89fc-e57517afe4a4", "id": "CVE-2025-68428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68428 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:899e724b-2e66-583c-afc2-71eaade64805", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4300fd41-ccf3-5cd2-86a6-6f97c51fd5b4", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:474296a6-2ea0-506c-8dde-53a65142b2ca", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79a858f2-1893-553d-82cd-3cdea78ed4b5", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9326a6a-98c5-52e4-a95f-80661e538c2b", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bca92c3a-d0de-5cfa-a6b8-28217e62521a", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d8c955aa-b892-58c8-a27f-0ce4b44d7d2b", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf02169d-30eb-53a8-b34a-c9b95486e8c5", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f37579b5-33e8-5b6e-b751-797d35fe0138", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.2-tuxcare.1 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.1" } ] }