{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b21a616c-1d95-51d2-bad0-4be61979b018", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.2-tuxcare.5", "type": "library", "name": "jspdf", "version": "2.5.2-tuxcare.5", "purl": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3211c747-99dd-527b-9d9c-6b05d0ac027c", "id": "CVE-2025-68428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-68428 is fixed in version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f4e60ff7-df69-50cd-83ae-969241c9efae", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:7d0ef41d-0812-5ad7-a1d5-7240aa08c3a4", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:044dfaf5-ca57-5cb0-8955-5ababdb33cb4", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:6901ea04-36ce-50c8-b34c-5234e9816c4c", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:f785786f-c71d-5199-a260-66fe6f5583e3", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:c72e9ad6-e52f-5996-8f7f-cbae5374b4e5", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:e509aa7d-24f9-5b95-9684-e22dedd02af5", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:8ea44d45-1f64-5136-b257-e5226288f85a", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }, { "bom-ref": "urn:uuid:12bfa442-90a9-57db-860d-9bd1f5cc7c96", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.2-tuxcare.5 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.5" } ] }