{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5c99a42f-b983-5f2f-8124-6b44e39abd02", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-fetchers", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3cbcc42b-4f87-5067-9bc4-70aa69f2aec4", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8639245-8a5f-5cac-abe4-f3c0a17aff12", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d07c06c6-91f1-5233-a68f-771dfcc8e3bb", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bacb7056-8dfa-5903-8edb-85575bb4a412", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da8677ab-b3aa-50e6-8c31-6342b705bd2a", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10b1b107-0de3-5bed-af54-e40ef6f5c593", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ec689d9-dc55-5b1f-b34b-87556b44cc99", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47c39718-7497-577e-91d6-a7891ba84e43", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a1dc664a-a19a-5552-8ca1-501da06a7ba1", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:84a0703c-92e4-588e-80da-1cee938e7cc2", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:103df6eb-fcb9-5fc3-bd50-f3265f6096af", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b61e3b7f-0393-5a48-992d-b047cc90c0e1", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:19aa83f8-e28d-5a30-bd03-eedb5930f483", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58daf328-1885-54d4-b93a-60117d1ea4aa", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a3ccd67-c9b6-5609-bdf7-2fc745fc2583", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63eecc8d-1e46-5cec-a847-05f8c1512eaa", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50a2637f-20bb-5c57-92e7-3f5ef53663be", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:799349fe-974f-50a2-babe-db7e794cf8c0", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f19f1dc-d5db-5983-ba83-aac3271f8a16", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fbe2462-c564-57cf-887a-b11cd2f5c7f2", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91fc1c9c-a7b1-5ffe-a91d-bbd313728646", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:744142d5-caba-5b22-a01f-87b29ed5766a", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc1b30cf-febd-5e1c-8992-35edb804f237", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb01daf0-14df-567a-8b97-abc3ba10fae6", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d95f17d6-8302-58f9-8958-5091b057a7bc", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3cdb52dd-f863-5ac7-a4c5-35766bd78dd5", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0f7f07e-3d82-5bdf-bd2e-f9a7b95957b0", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ad6ac0a-0fb1-5e40-a396-de2d8f4bb0f9", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a12f4035-eab5-54ea-a4a8-14256af35c9a", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21577344-0f8c-5a16-b6b7-cc7c1afff616", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4bbce05d-196e-5fba-936b-eab7db577b99", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:63b4e7b3-8b4e-5a15-b40c-24cbb8a408ef", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4364b89f-f505-57a7-85d7-96f8f59c3a5c", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ee34c932-9195-569f-acca-9b031af2954d", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5316d798-44c6-5926-b377-930d24300790", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9dbc3c83-ad8f-537e-aeeb-55c8cbeddb28", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a328c58f-be6a-51f5-8b7b-b3cf3a34a0d2", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d82be2a2-3fea-53fd-b6f8-7a8a14e788a9", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:042c80aa-e15a-55a3-955f-7482023bc020", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:417f2108-2bf5-514c-9f3b-a91c0bcacf0b", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d664a28-bf95-53fb-b111-96fd791b14f4", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ed5a0d99-5d48-59b9-9035-0f7a860c3b79", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03343c30-b506-59cf-b024-a26cc13f1038", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21c2f721-bbe7-5231-b136-98657e072c01", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c21a6429-5f82-535a-bd12-3fa59a662e62", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8895c2df-ed81-557c-8fed-4172491fd025", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4325d203-5574-549f-975a-ce8ebb77ba66", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4327663-a7fe-5752-8c62-3862307a3733", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fetchers 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8aa8f920-b968-5415-988b-185f170fa26b", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a43feb7-201c-5a25-a91b-f4d078caebb0", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0349cf32-9890-54a7-9ce9-90254b454561", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d5338111-64c8-5efa-96ca-adc0dbe6e906", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.1" } ] }