{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c03eac8e-f30f-555c-bd35-b14027836e4d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/node-forge@0.10.0-tuxcare.3", "type": "library", "name": "node-forge", "version": "0.10.0-tuxcare.3", "purl": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2e66bc9e-08f6-51c3-8f7a-f2dca811605d", "id": "CVE-2022-0122", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-0122 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:764a39dd-7faf-5d50-bf38-5f8ea27785fb", "id": "CVE-2022-24771", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24771 is fixed in version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96827bea-4541-5739-9254-976b31b8f176", "id": "CVE-2022-24772", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24772 is fixed in version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1642333-2009-59ae-ad2c-78edb41c7dc2", "id": "CVE-2022-24773", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-24773 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bd98c66-56df-52be-92bd-6d75914afc5d", "id": "CVE-2025-12816", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-12816 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3bdfde1-ab8a-5cb5-a364-186bc31e7312", "id": "CVE-2025-66030", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66030 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecd0c7e0-9da5-5277-ae71-52f7d984eb18", "id": "CVE-2025-66031", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-66031 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b23ee832-f948-5332-ae16-48eaaad0de42", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba1aa01f-a903-5b4d-95c1-a30120042f5d", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6270792-67d0-53c7-ba0b-5c46f8f8aff6", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd4aa546-54ca-5cad-8d45-98da64b29aab", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0f3e268-563a-5dc9-a671-af364a5e0500", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 affects version 0.10.0-tuxcare.3 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.3" } ] }