{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:21def660-20de-5c50-a043-b4ace11d93bf", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/node-forge@0.10.0-tuxcare.4", "type": "library", "name": "node-forge", "version": "0.10.0-tuxcare.4", "purl": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0a93fdfe-0cae-5c66-9de4-0143593af308", "id": "CVE-2022-0122", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-0122 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e8a12f98-8ed5-5986-9995-b2c8de65972a", "id": "CVE-2022-24771", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24771 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b00f75f3-0c7d-5705-92ba-0cda864a2657", "id": "CVE-2022-24772", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24772 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ed61f4eb-63ac-531c-81ce-ce07afb19343", "id": "CVE-2022-24773", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-24773 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:4ebcdf18-d798-5284-891d-d15d8e910000", "id": "CVE-2025-12816", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-12816 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fa492b84-bc9d-5d83-aab4-a18cce492db3", "id": "CVE-2025-66030", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66030 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:553409cc-3426-5529-8e56-e0a6c29fe341", "id": "CVE-2025-66031", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66031 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:c2c6a67a-a16e-536c-a425-51cfce73deda", "id": "CVE-2026-33891", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33891 affects version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b7b410b4-38b8-5b66-954c-4884d03780a6", "id": "CVE-2026-33894", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33894 affects version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d4ced77e-0c68-5f9a-a803-513ec46783d8", "id": "CVE-2026-33895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33895 affects version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e4effc16-5c49-518a-90b3-e06414dddf21", "id": "CVE-2026-33896", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-33896 affects version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f4b122b2-8b22-5672-b605-c563afa4f6f7", "id": "GHSA-5rrq-pxf6-6jx5", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-5rrq-pxf6-6jx5 is fixed in version 0.10.0-tuxcare.4 of node-forge." }, "affects": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:npm/node-forge@0.10.0-tuxcare.4" } ] }