{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1862508e-1481-5a16-9ad5-0c62985d79ee", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-async-cli", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2118c235-a83f-551e-af87-ea59e1501ce8", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c34b2d08-8f4e-5cdd-9c34-85dc98ed9779", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9c1a767-6d35-5e15-8a1d-cb2a10255fb4", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f74c05e9-032c-5d7c-81ba-f8095d837ba2", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:41a86605-f21b-575f-b963-89d884dff887", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e6cf96f-09cc-5f6b-bc02-b539cc35e937", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5defc8c1-3ccc-573a-bbfe-6883ba545830", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d030893-9c63-56e7-9e06-fe8684f41d98", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97003d85-c452-50fc-af84-6c62130249fb", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:278c077d-e5f4-5a54-81e7-31d28d27b02c", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d47a728f-2d75-55d1-9482-fc0dde583976", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d33735a4-709e-5685-b718-aeabe3820410", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:34f7e900-c9c4-55f3-8901-8e1422e405ae", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b5f226e2-21a4-509c-95fb-5e2cba5ad86a", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66d9ae29-df92-5f78-8096-45408471f9dd", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c2386e2-be43-5fbb-8cd4-2c8cb3284692", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:442a5035-075c-57c0-a5cd-bb1c19c3f1da", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:955b32bf-7fdc-542b-ba83-c46a528b1d01", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8da675ab-4c5a-51f4-826e-909f3ba0ba23", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2eb570ec-fed4-5b3e-9059-ae5c57337b12", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c0a00e2-2e44-54cc-82a6-daf685ec3093", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45b5ae7d-b3ab-566a-94fd-16150788c6ad", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72071091-50bd-5664-919c-8feff6fc6366", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4fa106d0-5170-5b6a-8aef-27f1c3c4015a", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86c80531-5b3b-5382-bb6a-e2c225b47fbf", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:33857ba8-c8f3-519c-a2e0-fc759124014c", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea0d2e33-da3c-5726-9a53-eea31134ed4c", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bacbf8a4-c09f-53be-a6b3-9f3432d90df7", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f91fb92a-f905-54ea-a768-64ade8ef891c", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:13a59517-f444-5bcb-867c-0b5924c0e51e", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fca939cd-5982-5e70-b6c4-e6c7b55dadbe", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2008f5db-ff10-5ea5-9c2a-94379c143108", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:734637c1-0346-5a9f-af47-acedf371d17e", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:077530b6-52f8-52e3-b663-1079490328c2", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4391dc9-a078-5b62-8917-596350b53484", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4f8e62e-2e4f-5540-89b1-a64b58c4531e", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fdcf1e65-29b5-5fc3-a457-976a86d6ad46", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:161ff230-9d98-516d-aac3-2bc0b6c2d93d", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52f496a0-0e2f-5523-8061-aee997c3772d", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fe4c2838-d92d-56b0-a94b-b93766753d08", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8ec64f5-5f11-5d1b-98ee-d254f3cf72da", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a01d5fa-a7f8-552e-883f-e1e5c16a1863", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:facc2764-2fbf-597c-b54f-6859d087df38", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7dc699b-5e5a-543a-adef-09495d91afa1", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:628036c9-23b5-58e7-a227-229a461530bb", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1221cdc1-0cdc-5f0a-8c4d-4463ff42043a", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ad2fbc0-1f4e-58ec-ab4b-aeb53a2ba86c", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26303e7b-dce3-521d-b721-92eee0b512e3", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-async-cli 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56c5c7e7-fadd-5dac-a760-e4598bbef906", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1354bd92-60c4-5be6-8193-15607a702497", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db37ac1e-008e-5578-bc94-0019f20e9086", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c63c7e0-3f54-52bd-9c5f-ac6c80a41eb5", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-async-cli." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-async-cli@2.9.4-tuxcare.1" } ] }