{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7edcd375-5b40-5326-a644-3bc6530d0386", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-dl", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:2d733af7-e6bd-5fd1-a673-a7af8a22fa8a", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a9cefbc-f19e-5b58-8cb2-24113c089435", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80458ea1-149a-58ed-beb1-47e2d93043f9", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad5f4d57-76d8-5d03-9d0a-dc359aff06ab", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ff87a79-cdf1-5105-9484-b7e2c6903db7", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1868d643-8b0f-56ea-875d-7de9ff733234", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:823eae67-6f48-5549-8f0e-acae2b660598", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a10e79c0-611e-5cc3-aa54-6e29617a0f38", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9869f310-02ce-5994-96dd-46013ca1a183", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b23f3695-5bc1-5c2e-9260-d69a7b2e8835", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8547331d-adb3-54f6-9899-16df90929037", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf5394d6-1f23-5fd8-8205-1a22e91a00bd", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75178c9b-ec01-52f9-b917-0e4ca74a086f", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:94fdefa2-d804-58c3-85d0-1e71956e4481", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03ee1d82-ea78-5b2e-8267-cdf2928f76f2", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e68e8cd-d603-5508-9c45-b485d1b4f225", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25c7f2e9-9310-5c4f-b01c-c15f8b7feec1", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2e9508ab-c7db-5f06-a916-d9d189852508", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c63c7477-1a6c-55ad-8d1e-9cb44a281d94", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:52e01ebd-c20b-5141-879a-1abd441ab9b5", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:969352a3-f4f8-529d-b8f1-5ae5638c89dd", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51bf899c-111f-58f7-9652-f90d482a3598", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d8f0fa3-8aa4-583d-b850-2492588dff22", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ae05d77-86fa-504a-b8bd-85b1b2fa56c6", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19cc64c3-ddd7-5155-a7a4-0dcc9230a072", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4232abef-d2cd-518b-9823-6345f09135d4", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ae7f502-be77-54a2-a3a6-8b20019e262d", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92cf5122-8dd9-5e9e-8ed7-d5fb621cfc26", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a5369155-dd29-5c91-af12-995a859df938", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:73278515-9e4c-5fb4-87ef-aa7881f5ea6b", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3ad0d82-22e8-5426-99a6-0d0ea0fc85d6", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca7b3248-175b-5d52-9ac9-bd3775b23b95", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab774513-fbba-5065-a8d5-bd80044497d8", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:92916783-03b6-52bb-94db-26bdeef4869c", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5855e898-6b21-5a58-94b6-398b996c956d", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a36d2f6-b2a0-51cf-857a-d8ac6aec8203", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e21fd08-5896-52a3-a052-9cdced4d24cb", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f924342-4679-5970-9ab5-1f4f6be054d3", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3edcd590-3bd6-535d-bb67-4260216eba8b", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:437d10d4-fe53-5974-bf41-69d4a8eecbc2", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8456adf8-c990-5917-9253-074401cd45ad", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a36e9993-ca4a-52df-b2fd-c083cf3fe54f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:308d5b41-aa21-58d3-9781-5a5f6f79148a", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c308e079-67f5-592b-81b8-6e4c8c7015fd", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9b76af94-7f39-5a94-a81d-1c019ae7e200", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9550f31-effd-51e2-b750-4995cff0f2c7", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77d79ab8-0206-5d33-bb53-2c00ca85e9bc", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec673e08-cd9e-5506-991c-eb9e1a70b0c2", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-dl 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed3bfd16-fd79-51b9-b502-1f561b39f8d8", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cbcca307-6398-590f-8c4f-b986b43edda8", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:24ec8007-8200-5b0e-942d-49eea291f99c", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0abe39f8-39ca-5d83-b936-99c1662d8799", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.1" } ] }