{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5e4dc9ce-2404-5ed6-8a79-97b2bc44cd15", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.2-tuxcare.2", "type": "library", "name": "jspdf", "version": "2.5.2-tuxcare.2", "purl": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:58a21998-1c98-5cbc-b71c-afcd2a40e6ac", "id": "CVE-2025-68428", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-68428 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0efdc00e-1f79-5e0c-a45d-a1748aa89db1", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b6cac6f-e221-5867-abc8-55dffa4abeee", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac9d3f53-af14-5cca-90ce-8d80882b51d5", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6517e037-fcbf-5e75-bccf-c629670cc504", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eadffbb7-9a34-5ff1-9aea-e7a0328f9cbc", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd7a0695-16de-5868-a00f-c8573ea1081b", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0dea47bb-ad96-5064-8af0-b9bb9be83db5", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff1d5b72-d200-552a-8a5f-fd6514f20e4e", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:16e35d12-10d0-5414-8662-1c82c7f6dc3e", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.2-tuxcare.2 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.2" } ] }