{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6c56d890-98c2-57c0-8097-ca83751b0bd7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-parent", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:91a02dba-3e05-5123-a527-5f2cab35ba5a", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3e5c7be-af8f-5dc2-b63d-04c4b16306a2", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:639a1527-57c3-5584-b34c-31a362f9a87b", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aef82bab-40c4-57d9-acb9-141d4710839f", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b321870-b0d2-5437-ae6a-d78309d0fcde", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6c7c50cf-31c7-5883-aee2-082b96486dcd", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da4d5f19-11da-5b88-b3fb-8f7c536dfea0", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:279a962d-e771-589f-b358-0f0da65bcc2e", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db304c52-fc8a-54e5-97f4-1d30399bb677", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c640c626-001b-5d70-b226-066867f2bef1", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72734142-3c5c-5447-a1e7-ffe65d6ce519", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3fdde13e-b384-56f5-9353-e6dd7985b390", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea6cc53f-8c33-529d-987c-b2669d5d33ca", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ea188830-e521-5440-a106-d4eb580b70bf", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a29cead-51c8-5788-aa5f-952cb5919db6", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97a998b2-bc02-5bf2-b286-72e5491b419d", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b4cdacf-9d74-594a-9629-f51efd9d8225", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0a15ed5a-e6c5-5faa-aadf-fcec2a5c1634", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d38d128b-9c19-5430-9463-ebf36c613b34", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4135aa6f-45aa-5820-9e83-abc11acf233f", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c566d9f8-5de5-5974-b562-a8b2c332e02d", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f3b89ab2-2dbc-5c8b-aaa9-2bd57ac83cee", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bad9eb9-0972-59c6-ae0e-0db7f0b262df", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64fb6d15-137d-5e0f-aa3e-bf8e96412153", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b427992a-8da4-53f6-a218-d3e40099e87c", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1447e8be-7c04-5754-9680-8489d3921ff2", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e48c09c-4509-593c-82f4-c57a54b38ff8", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5400cb1a-5677-53c3-96a6-4ef48cf7781e", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a025019-6931-56b1-b67f-9335594fefd8", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d06f8a3-a327-566b-b113-71c878e3114a", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a029267-6438-5909-9b28-d1f59d664635", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8234a1b-7cf3-5a2e-856f-608723cae795", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f616fd0-c7c8-5f7c-8c79-7b82d9262b7e", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f608d7bf-e57d-55de-8aac-77dedbb4fd26", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5020c52-f0ad-5eb5-ac97-b2b478184519", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10786e3e-386c-5528-8ff5-ef2d63d18288", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:10002c59-4787-5543-818c-d0d9b2559517", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2718de9f-96d0-58a7-92ad-28869c3d2972", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1fcce14e-176c-572a-9738-a645f245db88", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bcd23279-fec1-5059-84ef-0c2ad54eb9fd", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4ecb699b-8da7-5007-81bf-dabdd1e1da1a", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0df2f62a-36f1-53f6-9881-c76776fe7a48", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a1f87d7-016b-52f0-98a3-316633284e60", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1dfd713e-b3b4-5bb8-bbd3-8cc294434ee7", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1959dc77-c4ee-5e9e-bbf6-260464974068", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4454fe19-1612-5888-abf3-ace86a8b6475", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91dc1e8e-64c1-5549-93f1-b0b605764aa9", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:811c3339-54e0-58e8-9cad-7f14de03462b", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parent 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1bff02b8-93bb-5f33-bcd9-b2b023c28f99", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:acd81cb3-7bef-59a6-96ed-fd385dd3b925", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50861527-8e32-53e4-a492-f1d78e4d4068", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40082be1-e175-5246-b416-7072262e5862", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.1" } ] }