{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:a6948255-32fb-5a4f-a96c-b015ca567a26", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@2.5.2-tuxcare.6", "type": "library", "name": "jspdf", "version": "2.5.2-tuxcare.6", "purl": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:bda4fb29-7958-52ad-a25f-4aadf2e7986c", "id": "CVE-2025-68428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-68428 is fixed in version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:807010ab-1c76-5565-bc50-f6971d181632", "id": "CVE-2026-24040", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24040 is fixed in version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:8415e522-b5a8-5b33-9f65-4451292f351b", "id": "CVE-2026-24043", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24043 is fixed in version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:2037f134-47af-57c8-9120-fb10be9ddc1f", "id": "CVE-2026-24133", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24133 is fixed in version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:ff4bd772-11d5-5267-984f-2a4701717e5f", "id": "CVE-2026-24737", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-24737 is fixed in version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:6e1d72b8-e63f-57bf-a03e-3d5d3d108c3d", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:b666d04e-f714-50b9-965e-c200e575ebcb", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:83ae56c4-664b-56c6-8096-5dd5c6b76792", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:9e3a02bd-861e-51db-badd-f9e7c7ad2565", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }, { "bom-ref": "urn:uuid:4a01daf3-d4d4-5dc8-a0ee-f665f396dc83", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 2.5.2-tuxcare.6 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@2.5.2-tuxcare.6" } ] }