{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:94bb9eb1-28c2-53dd-a9bd-d60bb4f30fe9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/vite@4.5.5-tuxcare.2", "type": "library", "name": "vite", "version": "4.5.5-tuxcare.2", "purl": "pkg:npm/vite@4.5.5-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4fac0e9b-0671-57d4-a876-0862cb44434e", "id": "CVE-2024-23331", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23331 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5a34354-9552-5523-a016-3702c74bcc3b", "id": "CVE-2024-31207", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31207 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0977f851-2e95-564a-8c9c-edb8ac30480d", "id": "CVE-2024-45811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45811 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:652ee0ab-7e3d-5183-b648-03513448a4d2", "id": "CVE-2025-24010", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-24010 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:914f1709-17af-5800-a2ea-69247678a46d", "id": "CVE-2025-30208", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-30208 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d638df9-938c-5c80-bca6-0862835cb0e1", "id": "CVE-2025-31125", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31125 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef1480b0-0a40-5629-b746-c56b6e33f6ef", "id": "CVE-2025-31486", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-31486 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02c6d71c-523a-5339-9e8b-ed43a50d2ce0", "id": "CVE-2025-32395", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-32395 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5228cd4e-6a69-5cc8-8cb5-e037832df5fa", "id": "CVE-2025-46565", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-46565 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71d1d9f6-207b-5b85-ba2f-950ae7a413f6", "id": "CVE-2025-58751", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-58751 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a2a70b66-9899-55f1-83e4-096601ea45cb", "id": "CVE-2025-58752", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-58752 is fixed in version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8d902a0-5dd5-5ef3-b7d1-7092cbbad80c", "id": "CVE-2025-62522", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-62522 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09ab7783-c47f-5a1e-9b96-2f32eb1b5c69", "id": "CVE-2026-39363", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39363 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40ffbaf7-1396-5bfe-bf62-47fdb1dcf1fd", "id": "CVE-2026-39364", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39364 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67fec7b2-ab15-5e5d-b967-ef28f7baba33", "id": "CVE-2026-39365", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-39365 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88938c6c-3094-5298-833c-36ea48d8cc77", "id": "GHSA-4w7w-66w2-5vf9", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-4w7w-66w2-5vf9 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80a5ee43-b5a5-58c5-9382-0f07dfb9d6ff", "id": "GHSA-67mh-4wv8-2f99", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-67mh-4wv8-2f99 affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a89a4040-5a9a-5230-b3b6-2617af349845", "id": "GHSA-v2wj-q39q-566r", "analysis": { "state": "exploitable", "detail": "Vulnerability GHSA-v2wj-q39q-566r affects version 4.5.5-tuxcare.2 of vite." }, "affects": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:npm/vite@4.5.5-tuxcare.2" } ] }