{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7389cf8f-b956-568e-9edc-78b1c6d2a51f", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/underscore@1.4.4-tuxcare.1", "type": "library", "name": "underscore", "version": "1.4.4-tuxcare.1", "purl": "pkg:npm/underscore@1.4.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3e252605-076a-5b1d-9e0b-659c66eb74ae", "id": "CVE-2019-10768", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-10768 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21c0038e-82b8-52c6-8ca1-33f3fe9c74c8", "id": "CVE-2019-14863", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2019-14863 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37ef863d-d87c-5dc6-a589-368c17b4b5b5", "id": "CVE-2020-7676", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-7676 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d42881a-d872-5173-85de-9d96b4526914", "id": "CVE-2021-23358", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-23358 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4b1d664-8b07-57ec-afe5-ee5c6e4a7ee9", "id": "CVE-2022-25869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-25869 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e909098-0c55-5912-a757-11914af59727", "id": "CVE-2023-26116", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26116 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:427a1182-b2b1-5070-9cf2-415b52dfe7bc", "id": "CVE-2023-26117", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26117 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8163e3e-926e-5028-b279-7ddf91bc4b83", "id": "CVE-2023-26118", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-26118 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9dcfc6cc-e1e0-53d9-9194-a66f9b4e4d7a", "id": "CVE-2024-21490", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-21490 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e221bf53-8207-5a34-8463-572ba818343c", "id": "CVE-2024-8372", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-8372 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d78512be-e579-5611-8502-a8a72370b331", "id": "CVE-2024-8373", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-8373 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1b81b4a-0a1c-58dd-b352-7746c0bf1607", "id": "CVE-2025-0716", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-0716 is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:115d8ebe-1e49-5229-badf-eb0051e37333", "id": "CVE-2026-27601", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-27601 affects version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d3018cdc-b0a0-565b-8157-fef2ae7a0f34", "id": "GHSA-28hp-fgcr-2r4h", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-28hp-fgcr-2r4h is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83fa700f-e4bb-5882-a7d1-485ec6e829dd", "id": "GHSA-5cp4-xmrw-59wf", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-5cp4-xmrw-59wf is fixed in version 1.4.4-tuxcare.1 of underscore." }, "affects": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/underscore@1.4.4-tuxcare.1" } ] }