{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2a762c95-64c0-5bfc-b393-e21c30703953", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-app", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c794a356-03d5-52fb-a521-5f8db8003911", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:28a69893-6c8c-5777-adc5-b40cb4fd2b5b", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b45f479-e2c4-5f19-8c5b-34effeb71212", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b30525b-1dce-5f65-86eb-7ef3087e10ca", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cf85a77e-3200-5a39-9ea3-1da1c7779c8b", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:824207a1-fca0-560a-88d5-257757da7ccb", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11a675a6-f0b9-5597-9180-7201a543d066", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e7b40452-4519-55e3-9453-7e21be917411", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:120cbf29-a4df-56a4-8f4d-cb345b272411", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cfb7fb0b-c28f-5e9e-9b0e-b925192fbee2", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9bae01f2-80f2-5eb5-9444-5f0e8c5b234f", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b81bd5e6-e9c9-5703-918c-f2311309716c", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba150d59-2a60-58e0-a189-92f6df50d797", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2fb8eff1-9573-5dc6-98f7-d5f146247e37", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45b34286-1691-59b9-93d8-39dcdae0e155", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:819eb846-cf44-52b6-861c-47958e22d387", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25d6d877-1e7a-5c02-899c-30e346b0f5c5", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71addd08-ccb5-5d28-bd67-baf1352b5c03", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df2badc9-f18a-535f-95aa-2f8bedb46023", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75ec7e86-c43f-59d5-873e-0dfc548c5715", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9988744-e671-552e-97f4-6339c1a1b075", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81416c35-a1ad-5e0a-a962-7b528e197890", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dad424d-ebed-5860-a133-aec13ae6f0f5", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3145226e-4689-5a61-a1f8-2175d15dd546", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1b5c0f1-3c4e-54b6-984c-8dfdd4417fce", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bfca7d1-1b9d-55a7-b6b9-2cf48c10028e", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:417ba865-4fc5-56e5-be36-e760c58cdf71", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f292a26-96aa-5bb6-adc8-eb03b0a16d82", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:193d002b-8f68-542b-a840-190c2cbb125d", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7555c4fe-7832-5a8b-b625-cb52b634402b", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1c1eebb-fa44-5859-8885-2ead2c0ebcfa", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae2b6a54-643f-513d-914e-898cdf9a7beb", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73c3a655-4103-51e6-8079-2d5f9a15f786", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ecdd1355-e38c-5755-91f4-7d6b38812bd3", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7a7211d-06f3-531f-a25e-560d6c736f9b", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6881bead-04ee-5680-9919-7280189fcbe5", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b05c4d40-1157-53cf-b484-32b16a6c6629", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6d09c37-41bd-5cdf-856a-e09072b4f232", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0cf192cd-835b-5140-ab33-6e331e056868", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94aa1854-9dfd-5c1c-b47b-48209f17978d", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:724a296e-337e-5538-864d-c1705075575e", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83f5fd0a-ce58-553d-8920-6311e1f57a41", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1cd8c106-fc3f-5450-97c0-5a87f8a8ab0a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5bb803c-cab0-52fe-aad7-30ddf875834d", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5553842-c70b-5e17-906c-38a7679d4a9d", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70594a4f-492b-5bd9-a0e2-0466f4437bdd", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fec2b76-7653-5883-8778-9d91184c180c", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4eccdf0-303b-59b5-a20d-0de2be87a725", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-app 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9f00217-0fa1-5013-958b-c7adee21d039", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de7db675-9848-5432-82bf-9829ee60ed41", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc8080d1-93cd-5ee8-88b7-e2827192b6d1", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d5668bb-4e9d-5e15-bd03-cc1fe2dda3e8", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.1" } ] }