{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b7934b63-0a2d-5542-9637-5bf030f32d04", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-batch", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7922d485-20b2-55ca-8cb0-f5f603ed4b66", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5ed3892-4270-5fc5-8131-b46077cbf542", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b31fb74-1fa1-58e1-84e0-748d83a82f10", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7cb9e2a2-f863-5332-a9b4-f72b669247c8", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17ebe2bd-628b-5a11-9fe8-11eefbb7b450", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:340d712c-8ffd-5da5-85ed-75f371cdfb37", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e35d7e9-0109-572e-9192-3d1e4c866511", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7424d36a-ae37-58fd-b13d-4af6054dd96c", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0473e9a7-e961-54ab-8683-eadd8ce0fe47", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:597d77e8-d024-5e0d-8816-c8ffab318a4e", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:923262ca-7f0d-5535-9942-9e3a3edaa387", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29ab27b5-3130-5d2d-8bd2-c19a62d99dbc", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:899b54b8-f21a-5a67-b57a-eecafd6e96c9", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66450d34-6741-5a92-84f2-d41a50bfc583", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f389072-b158-5cd0-a974-49a3d9744836", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d71a463-b7e6-5085-971a-261d38ec2ee4", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9177faac-779b-53c2-a106-399a66c79571", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ade9d75-2f34-583a-b9f5-889cf0d85532", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a052a959-0a8e-5b88-a113-2711472424b8", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b040d2c0-41fc-5dbe-bde6-299a8215c373", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06e118f9-5dab-5e08-b530-193489bc62b9", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e54f26b-08bd-5ad7-b262-b5dc2e240eb0", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c077cde7-9510-5d60-8061-19b588754386", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:699aed39-77b7-576b-b76b-208c80582c56", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a52fcc6a-f357-55ac-b522-34643043f4ef", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0cfa7e3-5d03-5e64-a193-dbc143dfb647", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7b4bd18-7108-5e82-8c50-e246de361c44", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3fc95c0-b301-51a6-8b7a-a196e8fa0bcb", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24b8d2ed-36f1-5c2a-8e8e-36a7ce0ed437", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:66921393-0ac8-59b5-8707-cff414446e95", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c1bd8b47-6f42-57e3-81a7-439f1f0d3fe7", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:465b23ac-377b-5826-bf5b-800540093a0d", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dbeff1de-0bac-5690-ba7b-d85a36581b66", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f948ae50-d403-5ea0-b726-c67bbf4be925", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bc5c5a76-ec6b-5804-9900-a99d2de7c742", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e112b1a9-17f1-5e34-b17a-7d5ee95df0b6", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a1a71f5-c64f-5a71-9076-6af459991de5", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e5509a3-add9-5431-947c-33c83a6d5139", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e2f5367-fb29-5dc1-85df-f8d162635b68", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c3b9398-fa5b-5d10-bfe0-37fe00767124", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d658bd3f-3e6a-542b-8dbc-f0d3d07543f2", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83ff9abf-67ff-57a8-a52e-c835557d6587", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0fe427c-c4af-5358-8314-abe7a37b287c", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e289c8c7-b35c-5169-9868-dcc4cef72658", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:801bfc0e-37fd-5e10-91af-5c411313095e", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b71eea15-8ee7-57fa-8a6e-fa5ddce0fd67", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52f46122-a547-510e-b7b4-22393013c8d0", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d162e95-ca76-5838-93e2-7b1fa9d63ec9", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-batch 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:898ce2b6-f661-573a-abbe-a909b8a7d0d8", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5f9dbbb1-0aba-5f54-995d-af8f03cb0acc", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:deac501c-b91b-5a3e-ab08-7720c234aef7", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cbc6a75-7329-58d8-9683-842fee1f1e6b", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-batch." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-batch@2.9.4-tuxcare.1" } ] }