{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:248b7667-86f8-5684-8de6-591240a18468", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-parser-font-module", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0fa50aef-18a6-5cc6-b871-0b649ae58b51", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8de5d12f-7dc6-57fb-91a3-864efd57fb45", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eda7bbfa-86cc-5f86-973f-b7af5274c085", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:633b0b14-8c29-5a7e-a20d-0a6f3bf4358f", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:145451fc-3d7b-5b1c-9eb1-0d695bcf09f1", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:338c0827-408a-5549-864c-6131d19a8004", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9e62ad7-9738-5798-9dce-17e60203f676", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46b364ca-2916-5fd1-9a11-716b4e8d502c", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:da7b6287-7b7c-50cd-b510-a7c57b4abc06", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6ba7f94-19e6-5c4c-8443-ca9f28f9e225", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6863cdc1-0d09-5574-99f3-f74c787b8816", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:74dc8bf5-7a2f-5708-86cc-a4ed704ce9a5", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca987b40-7c9a-5278-aae8-7701af379f27", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:38fcec21-c753-512b-8d9e-76b369ad306f", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:90a92ecf-15db-57ef-8988-ac03d4a46b82", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:abd6b0e8-f05f-5114-bb35-4a11703856ca", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f4dce6b9-ba8c-5765-bc1c-7f522fd814ec", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7dabcd46-4d40-51d0-8ea9-b352de989562", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e83b4a9-9bc5-532c-9903-11d7e0b9a160", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5330d69f-7362-5f19-be6f-bc8c02ead16d", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aded15dc-9aa6-5bf2-b993-9002ee826cc7", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80cee2dc-919d-5906-880b-e8f95009cc3f", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3b7a2435-7995-5e69-9415-b720644afdac", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e60df7e4-803a-5a18-be34-4dae3e9d3ef8", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a56262e3-0b85-512b-a9b3-497059dead98", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7c3240a5-ccc5-55b8-a417-b77d84ac042e", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:172004f5-29b3-531d-8156-6e8467d64b73", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a31f1a5e-b4ef-5ac3-bca7-5e36248e2670", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:57665f56-0f8a-5412-ae5c-f5994b74dc54", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e47c889-09f7-5e9e-b29c-58909619de2d", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43528858-6eac-59e0-bbb6-0206f85f3e5e", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7f85d55a-39c2-5a46-b583-abac2e934b6e", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d776de28-ca82-597b-aa1c-6cc87b403a68", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:36db66b2-9783-50c7-a43f-46b822367a1b", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f113f7a0-f8ae-58bc-acd2-3212d4cee80b", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cac6c454-65f9-58c8-8735-42410f486422", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7883409e-8960-516f-8761-7f7e241a678c", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a7f45a04-e632-5193-bdcb-8c38dca155e2", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b1e003b-81d2-50f8-90ca-b4a8a889a5c9", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b64aca0-6cb1-5e53-ab88-8923cef27b23", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:486a14b9-2e9f-50f8-8498-244a4c603247", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2de8a2d-746f-59b2-8966-93cf041b7f62", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ade6d38-8efa-5dd4-ad18-dc19913e11e9", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68972d34-199f-53b3-b6b4-4727e0ae1e86", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3aacb9e9-e84d-53ea-bf86-898f08a69eaa", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77d87d32-f684-5fd4-bd02-1eefa46021e3", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aab1b010-c866-5800-8d78-649d5ad215d0", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c826f67f-f0df-5000-8606-e1747aee8f6c", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-font-module 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e0becd1-e74d-56c5-8640-05781de8e9f5", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f92a6ed5-c7fc-5d48-b9e1-aef098350f45", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ea412af-3dbc-592a-ad30-b5feefb1d78e", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a0842833-97f7-5c45-afc0-4f954905c86b", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.1" } ] }