{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6695ab6a-2758-51e0-9c31-afc63ecf9f26", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-java7", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:1e0d2f0e-735f-5a6c-813b-cde3a6098812", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5af398a2-a2a5-59e3-be36-c4d62721f722", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9785db3a-67b6-5fdd-b347-ea67a3500fd2", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f845f08-fe57-5ac1-b99d-09f7a066c2fc", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9ce285e-49a4-5b74-9e8c-1f12d09a54a6", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:642bf9a1-07e9-553f-86ee-38672c03a3b2", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c8549a8-54b7-5000-9e66-541c81cbab2b", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e066b3e9-730a-5730-82c0-cc6a3e536716", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d4ac3e3-d6d9-5f76-886f-268081425315", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c09865d-5852-5f2b-ad93-98ff5ecb8763", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38d25a43-e287-5d28-9512-1ba6f7d03cb9", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a33331a-e933-50fd-bd43-110216276965", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42e7f3b3-5da6-5ae0-8dcd-f2d48bc3bd8d", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d8ed84b-e625-58a4-bbe2-630b8c730f40", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea4752e5-910d-5d63-8b93-ebede0ee3c3a", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99c94d95-59d1-5a67-9559-fcdd9cc2e03b", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca2ab420-4ce7-5780-8126-eba873fcad2c", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a2b96ba9-f653-5af4-9f39-4985cba53fe3", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:752a4a74-95c2-55db-ac79-7bf68eeea406", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6237e4fa-2be0-5358-a8c6-f61ca27b02ed", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b1c1fd63-b407-5229-aaf4-a5f5f0b82e06", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4fe2a98-4ada-5d59-ac0f-36abf21c2e2c", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d23a03a-3b9d-5135-8fd6-34615013cd45", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75549708-f1de-5897-8e2c-d8b810882a4d", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6cc8aba9-d328-592b-add6-11e9eae29737", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:29036c03-a305-5595-ad93-73c53696f33d", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25ae06d3-1abd-56a7-877a-724176f5acc9", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0b5e28d7-56a0-539d-b3e9-90b3905948b4", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:595e9abf-b452-5a18-aaf7-9c53c1b5c391", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3098a00f-7a0c-5124-b4d8-957abc9ac205", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:594d8635-0f94-5b6a-ad05-65ffa23983ea", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcec7e0c-d053-5c13-b5d9-f43c9bf5874b", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99c64fea-001d-5136-9943-b215b70f6cad", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d327ae2-0af9-589a-9a76-5ac91a8617df", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa17b900-537a-5321-b8e6-5072f43ba09a", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69c82400-2057-5a65-ad7a-bd6a5431d245", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e62949e1-5204-58f4-a45f-880e0fe3b508", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8135ae5d-cc7c-5065-843f-01263de47f56", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f42e6d9f-8d50-5b66-bb04-cc9e3536d75c", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3644270e-b96b-5a95-88c8-9d0da3ddccd6", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7e6517a-da7d-537b-85c5-d0799b28c5a0", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46046e8e-1315-5c12-be1d-e63705f2ea8a", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c1ed7ec-678d-546b-8147-be1dd1c39dad", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b0e81e0-f14e-5e06-97b4-78cf42fb2760", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8729c6b9-1587-580d-9b8c-6eb8017a21b7", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:75f7ed58-8899-562c-86fb-cc8d3b3a85f3", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d74a7ef-1229-571a-9438-73f01220e866", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a75f2b9-eba0-5176-9470-58fa10f1bff0", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-java7 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:42a56373-c10c-581a-8578-adba2646ccc0", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97d0bf2c-532b-51a4-a045-d78e486b4042", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a9b438c-86ee-577e-a949-03ad1ed3ca65", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0caabc2c-83cc-5aa9-8b80-09d15fa5467b", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-java7." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-java7@2.9.4-tuxcare.1" } ] }