{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:664e42e6-960b-5b74-8065-b5c1dcb5e7c0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/jspdf@3.0.4-tuxcare.3", "type": "library", "name": "jspdf", "version": "3.0.4-tuxcare.3", "purl": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:b57101da-6422-5196-af91-1d5dcf979801", "id": "CVE-2022-3517", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-3517 is fixed in version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a0ef63f7-dad7-552e-91d9-9e92d1d82f04", "id": "CVE-2025-68428", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-68428 is fixed in version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ed5cc12d-29f3-5ea7-ad84-8c64973476b6", "id": "CVE-2026-24040", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24040 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71a34e2d-8c21-5518-b803-d4f1c4df8754", "id": "CVE-2026-24043", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24043 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:404efb39-c9fc-5ac9-af99-e797f0a540a0", "id": "CVE-2026-24133", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24133 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5210b6b-31dd-5266-82c2-cd61b0dc1a8f", "id": "CVE-2026-24737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-24737 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7719284a-1457-5ef7-9c64-755d61550adf", "id": "CVE-2026-25535", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25535 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cd740b8-2f8e-5739-857c-a88d4d446f46", "id": "CVE-2026-25755", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25755 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a6fad8e8-20a8-5637-80ba-0487d9ea640e", "id": "CVE-2026-25940", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-25940 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:73b25202-5e48-5269-80de-1f839d84b2c3", "id": "CVE-2026-26996", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-26996 is fixed in version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47e26171-1267-5b58-b32e-7e226ccd8a74", "id": "CVE-2026-27903", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27903 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e176592a-e1c1-5e3c-8413-8e7742f2386a", "id": "CVE-2026-27904", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27904 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0942ff5c-7270-5e8a-bd39-027a1d44d6fd", "id": "CVE-2026-31898", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31898 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af582a51-5386-57dc-90d6-d31c8db19f46", "id": "CVE-2026-31938", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-31938 affects version 3.0.4-tuxcare.3 of jspdf." }, "affects": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/jspdf@3.0.4-tuxcare.3" } ] }