{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e5dabbc-908a-54e0-a2e8-504d949d67f5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-bom", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:32b127d9-989c-55f3-a1a2-43a5bf5591ea", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:587b797b-0ddc-5bb2-9e64-2cb26b20b901", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee873477-8056-545b-9347-8b5db99f4c51", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d45aca00-d9ea-5fd9-a38a-be8d0e87f724", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:708b5f10-a626-5c1e-af2b-8a7a90937a6f", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05000d4b-37f0-530b-bf97-f58a40ebd56c", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d66e4a96-e8fa-534a-9a9f-c0696730a917", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c001af6b-2736-5f2d-890b-f99ec33fd585", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc289e03-f23e-59ba-955b-1c64d5868f07", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de084c5b-f258-5658-a657-f34b1e061bc3", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4490dcf1-3f2e-5300-9e8a-a0942d3a9c6f", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:71b7f970-ec47-53f0-af68-5a63bca56b2b", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cef05ce0-ce39-58d6-bc9c-ee5fee7583c7", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98dfe55c-ddd4-5236-b15c-bff824b90f6a", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f952f53c-01a2-5ae0-a7ca-ba67b5b8911e", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2c9415c-3248-5589-a3b2-71a3ad12ce68", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7af159d4-9dea-51f1-865d-81e8411238a3", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a479b6b-619b-5875-82e7-02e82bde8ed6", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f97aaebb-68a7-5f51-b3bb-e9c7deb90435", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f356a40-f84d-5b04-aca4-68c3a2ebe1ce", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9ab91321-4e0a-5ece-b6ed-7a52bf2402c9", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dcd2f6a3-f77a-582b-98fa-b09cb342c04c", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94b28fc9-010c-5690-9754-93aa9d9af3c0", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e03cabd-9486-5c01-9999-f6dd055175b8", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:559581e7-e7e8-5f1a-90f3-8a5932d9b731", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e0a5f33-1df9-5ac7-a77b-72ddf984c3e1", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d9e486f-85b1-59c8-8175-caadad123b68", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:006a7d23-b829-56c7-a90b-e12a3d0750a2", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b329fd03-11a3-5d95-bf47-236c549bc3fa", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44f68f1e-81c6-53a0-83ec-bcbbf9bb801d", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27a37011-0809-5d3d-be35-b6e62a2164c4", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c720c67-ab41-5f0a-a786-6f04e5cfa61f", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c00c434-af47-515b-b199-bae7cce6123d", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1b53717f-69fa-5a4f-a2d3-d8c2f330a643", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d84b5b1d-d17d-5372-a5df-6eff3de1689f", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0487e00c-6059-5d7c-b199-fffb4da10c42", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44e2ecab-7ac0-50c4-990e-103155dfc738", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f34a1898-9143-5999-b952-1004e38d4967", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b7b3fb0d-b074-5a0f-baf1-46f12bd8d4c8", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4d73598a-60dd-5e0f-b8f2-4f8979bd2528", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73ddcaa8-a261-5da3-a2d0-46f1189b2f77", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d21c377-66b9-595e-bce5-7f69ea828fab", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e5ec543e-3957-5b65-af00-120baf56f708", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cddd63e-8211-50c1-a591-6911feb6862f", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:890de89e-4193-5caf-ace6-0807a7e85a2f", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97e7b13f-bde5-5d86-9dde-be4389b52075", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:414d60b0-3d16-5f5e-a850-a29ccd0e51bb", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1917da7e-3a58-5997-9604-0e6f117fc756", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-bom 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6baa7e13-dd69-5793-8f8b-448d0299cb00", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c38dc0ef-2402-54a9-9677-f1a86df47ad2", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a86ff52-cb04-52d5-8cda-c88936453a7d", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c8f3758-eece-57f4-8cc3-1f5de26f1002", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.1" } ] }