{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:81be34b6-a93d-5c93-9e50-9f919043c9a3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-fuzzing", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f053d3e1-ad14-51a9-b8cd-ef7e8f741d65", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a53f9a7f-0d2d-5216-b6c8-7b80c090cb5a", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db3e6df9-20bd-51b9-b51f-06e2611e189b", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:53f800e6-b771-5b7b-8a67-2c067b28f567", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4b9c6c7-5bb3-59ca-b393-e2e2aab333f3", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ced2e247-0acf-5d6f-8da6-9efc0b9c2f41", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d0ce654b-3616-5861-9539-33c4ad2c9355", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4eba7e9a-d0f0-5039-8785-cce5f83441e1", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4eda47f8-1787-58cb-acf2-f7cfcd07988c", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b2aaef83-4c15-53b2-a468-0c0d4291d3a6", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef66dc6b-171a-518a-89a8-540bb4e7ee40", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95303d7b-7b70-52d1-a6ec-beefdf2237ae", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e773434a-5635-5f0e-b547-e662436b5392", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a46f838-7d59-5a83-b050-4ff7806d854f", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3c77cc36-b552-5215-b4db-3cf0791a7a8d", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42c11b4f-3b2f-5dcf-beeb-f72077f975b8", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ff74965-b015-52b0-8286-9f83d1fb11d2", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aff0253b-86c4-5145-8398-2b805ef2eee8", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91244c5f-3cc5-5036-8ac2-77c2ed06a021", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:81b50b09-a9c8-5af5-b2ef-fedee7e5faf7", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d16c55e-1adf-5d40-a8a2-f453695ec59c", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87a82044-c19e-5199-908d-51cf016c359a", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7200b71e-b4a1-5c59-90ee-1730e67853b0", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b894089-def6-56e1-8b39-e7b79e3d5569", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b8374d8-2eb9-5368-9e85-c662b20c75ea", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e0f3bc50-6ca8-5f80-965c-78e8dd78f703", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78327894-60e4-5800-8a49-c42aaaa7798a", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8694a672-14ea-5e00-99ce-8c122dd085a6", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cef58ccd-0340-501c-a130-a97fd50b3081", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da6d1d82-5205-580d-a790-a19bcdf3333b", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ff3f6b13-d325-5ffd-b010-c07821a1a747", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dacf3645-ff96-501b-9bdc-d49c7b6a7ba0", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a3c035d-48bc-5cb0-a6e1-cf3d42b4c132", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:081b2a83-8e44-5608-9877-9c9225caa3a9", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62ea682b-4276-5775-b09e-6e41e479eee3", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1557fa2a-cd53-58dd-a9ff-e94f5bcb9124", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd00c8e2-c33f-52b5-894b-bc88be8bdfee", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fbdb946-acb0-57a0-a132-26f38e136214", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:086ce4fd-3f4f-5a6e-bb9e-78d78eebed43", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6bad91f2-9b48-52d4-aa5c-4ba8c25e78f2", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a239f52b-b477-5fd8-9e81-d7d1dade0180", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2c97624-2d2b-5ee3-a7ff-e5419922b267", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7d57fee-fc9c-5546-9876-d1b20a5c1fbc", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c881edad-ace4-5e1a-939a-6c234a408880", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:815d517c-a60b-52e9-a489-1644eea36163", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0dd6d6c7-01d4-5527-9614-c820bdb7783e", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c7a6c4a6-28f0-56f6-bd1a-8da4bd2ea014", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4d1d92c-03d8-56cc-93c7-3d66d311cbf4", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fuzzing 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4136b84-1df1-59d9-94f9-8fb5d509a9c7", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b21952be-b3e5-5c63-8e9c-81bcc044dc73", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:729bd9bf-d265-5ab7-bb58-35cef1c2e5ac", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1a7dc6d-72ad-54d3-9ce4-83bfa2b22cdc", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.1" } ] }