{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9eab8dd7-6fc9-56fd-af56-c3bfec08aeac", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-eval-core", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:8adc9bf6-1285-5792-9a3c-93c0f6b2877e", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6aaf498-5d41-57ae-83ed-aaf5236f3b81", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:605093d5-2d66-508d-94d5-7c2b3d236e8c", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:249f055c-f351-556f-a687-13d0143085f0", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4df3ea04-654a-55be-93ad-006c28ef24cc", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90d3fa1f-12e4-56b9-9054-195e315a4ef3", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d323914-99b5-561d-8ed2-6661afbe5d0b", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b34b4fa9-b599-5e0a-a65f-36769bd76963", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87673a39-2a5e-5a15-81fb-8547dc11217c", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d95d6675-785f-5fe9-b3ed-3af1fda715bf", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a4e9589-ef39-5fd7-b20e-67a1df3f27ec", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ad3bead0-41d2-5cae-834c-213e45202da5", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9d53ea6-13d4-5044-850d-f76d6ce90d23", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93d69ab5-c805-53bb-87da-22dc53010f8b", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa91cd40-a6a6-5987-bba0-1cb43cd90bd8", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e19183e3-978e-573a-9d83-17fb1e9fd725", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44daa010-9e54-55df-b667-1b594ab708f7", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eba51c2-626b-5532-a67d-84d2caf30076", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05dcb840-ecfb-5686-983a-a7d4547c8a9f", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:586e28ce-a86e-528c-b4bb-9e80728f4295", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e22ffa35-781f-5150-bd14-bd4ee79e379e", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5502a00c-5e89-5f36-a5a2-e9f9e5067fac", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e15a2c61-ec9a-5f49-9350-81d443a689e7", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4e473d5-630e-57bd-ad02-69e00c50bef2", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b306084a-3b8b-5f4d-9c7a-ec3562c5d015", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ef4ada4-e775-5d0e-9a5a-8bd4d6b10fe5", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f599ee6-b9df-5ab6-9762-39a02b5ee6ba", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11a199e6-5961-52d2-a931-25a46fd0e4df", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e6dd0e7-552f-55eb-971e-cc5550a62e3e", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:251de3d9-b169-5e37-9d26-9c74a0783a50", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58ce32d7-7a35-5a80-953a-9fb0326f5e67", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27b300a7-9e16-5c46-8450-fe96d07d0a02", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6ae5b78-a9e2-5608-b579-2d1bdd289db7", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19475391-66c8-5740-83e3-8d571dcf2434", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3571f416-0eae-52bd-b075-133dad10e0ad", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1e7eec5-5d67-5869-af45-5fb9ffaa7670", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c284bf5f-2ddc-54cc-829b-664755af64b1", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e8b7ea75-b551-5231-bf41-e5cc9f1b33e7", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:65e7cea2-3779-5df4-967d-1a1d1c0f7f22", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c6efa5b4-299c-55b3-bd67-f84c1bfb913b", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c07eff92-b98e-5a46-907d-4ea9a9802a7e", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b33c9508-67a3-5598-8bd3-4b26563f6b94", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb64ed2d-ac2b-5c77-bb18-986cdc491f01", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b17b404-8fd6-56de-bae4-f73ebec03a99", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9429edd5-bedc-5a8c-81ef-56862ada03db", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9cb1bff8-d473-53da-bbc9-2b80c04710c1", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:886ef57b-5b1a-59d5-866e-c4d50a2265fc", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b4e97c3-5c61-5e59-b516-1110692d9e69", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval-core 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d2e35d2b-ca7d-5bed-9e9b-c201656c948a", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:630149db-5c05-515c-85a1-e3fbbd1b1c5f", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cd81b036-0513-5cd5-b69d-c84e99e3d1df", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:129a908f-3b57-5d3a-ab97-d164036d2b74", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.1" } ] }