{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b03d9010-3b1a-560a-b4a2-e3d70b0d6a09", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-bundles", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f267ece0-96fb-5d80-9dec-0b0eaba842c6", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b7bdf75-9348-561d-a768-5e02d6548efd", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0e66991a-776a-5cfc-bddf-248cc591e181", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:338a552e-56f5-5c0e-9fc3-6c5a7c216645", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3896073-a204-5009-b742-c8aa83124a90", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e45c1fb-c3c3-5ad0-9180-ede438692655", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a778fc0-b5b3-5f03-b8a3-5241c795c71b", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:225c1144-9d84-5238-9e68-54723b410df3", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec0a043d-6b4e-5bd3-bdf8-ce2f21a79693", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea11d1a9-4846-5382-b701-df5e30f2161a", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:56a051b4-9789-5c38-af5e-cac9ed402a69", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fb17d55-3f5c-50a8-b2b0-0b4c6c8a4462", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c0377d6-d57f-52f2-85e0-e549a47381ec", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1c9319e-897a-5198-8b9c-6a4174f2680c", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0184d36a-c060-52dd-a9e3-7b20be920cc4", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:011582a9-8f11-56f0-8d62-e7540814032c", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d1dc8de8-8e26-58d5-8346-c12bfece16cc", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77b2fedd-d185-5b04-9791-21376f6c9507", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:713bdf21-e26b-51c1-871c-630299b20d5e", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:638d517c-32c1-5c54-b781-1cbabdaa9619", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bd2a831-602b-59b3-9897-a60374e59920", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78799bac-3848-50b2-923e-16e5d55f4592", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8fad4c41-8052-5d8d-96fe-52e648c16ecc", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c425ebe-4cbf-5ff1-8683-70af084ca6ee", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9149c3e5-5ed4-50ba-8240-5894a0449132", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9031faf-dc4b-5392-9fa1-734d3af41396", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cf51739-f9e5-55f1-b946-10495284d7f5", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a45de66d-7102-5abb-97ce-dcce64952d45", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4f8fd8d-9c2d-5d49-9a37-a48cb254a33f", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f96e2c53-41c4-5085-9a4e-f84884259871", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4736000b-ded6-546b-a473-250e31cc1d9f", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d361e9ba-0fca-52df-a642-fd77e54c7d6c", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e601f8b8-ebf2-57f8-996a-386f30f404cf", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8808c9d-ba09-5093-9aea-d86f0a8c587b", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25425ccd-8f1a-5545-80b4-198d84308960", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef966a57-6f45-5c3f-a62e-e3592ed1d31d", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82df86a1-2ba7-540f-94b5-e9edff10447f", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3387e249-c67e-5e6c-906a-8c42789cd313", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b0ad650-b990-5f86-b0b4-88a4204ae701", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f432dea1-c124-57cc-ad08-a8e156c7d031", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eb762e9-7968-5814-8076-14f4c0982002", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:00a6998e-6eab-5715-b023-e6b847859ebe", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adac49bd-aadd-5216-a106-d4565baeb52a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e91ba1d7-15fd-5a04-b7cd-7db7f263236a", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74748c79-c82a-56a2-bab2-b390cb38b9e7", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7f271a4-7bd3-5818-bbf4-9ee564030674", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5952639c-3380-546f-b5eb-52f7800d3b04", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3bf0fcd5-75ae-533e-926c-007b53a10dab", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-bundles 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3408b24-99ba-57f0-96af-25095b7eff46", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ac299b01-62d1-53ef-ad78-b137ade6e4b7", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a76e965e-c87b-5062-8f39-2e87863c1172", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26216798-e4f3-56f1-88a5-12745076c339", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.1" } ] }