{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:85f215e4-a79d-57cb-8858-feace1c45561", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-parser-news-module", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e7964583-b0a9-58f8-be73-e2f842649559", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb580d79-afee-5e7f-a500-5aaa8959f3e4", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2b453a95-766f-53ee-84cb-88ff9b4f2905", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b67ff2fd-3598-5e70-8386-f0864b67203f", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18554543-54b6-58c2-baf8-5e4ed1a56a04", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:edf14901-22cb-5027-aaf3-7e96fed6e7d8", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2be4cab2-1119-58f5-ba1d-b1c2a408ea52", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:557fcddb-cad0-5d06-851d-a683c38d5c01", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8bd282a6-ca21-5a54-b103-2de0d461b067", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:49421cd6-6d63-52c4-88e8-23bb6fe4f2c1", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:40d95885-4d57-5d94-966d-bc1aacbc1cc5", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3eeca3cb-2095-5527-84a2-8eb8e415aeb7", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2f1e729d-62bd-5680-a32c-d362f5a46609", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:998739f5-01aa-5abc-97ca-205c80607326", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7814e6a9-5008-5623-afdb-8cc0b233edd8", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43ed127b-16e3-554f-b69e-a808ff9c8a26", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:703f1341-544f-5e9d-90e2-8ae653e11264", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab2c6d3e-a1d4-5739-a82d-bed9f9ba942b", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d97546de-1d90-5fe2-b79c-74de48b55218", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b634711c-46ff-5163-9c25-53b2b877b91a", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:053f0d5c-f85b-5728-9c0d-fb35b86eaf86", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b72e1dc1-844d-5abc-9839-3b8aee4ded67", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e42c242e-2441-5d33-9a8b-2be0d19375c6", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4806be6e-28cb-533a-929a-2bfb526550b3", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf7dd4a9-911d-533e-9173-0254b987359c", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:513322cc-d844-5cad-a2cd-9a807ae74d26", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51c05c44-d829-554b-b08d-1bc6476e658d", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86ad0fd2-3d5e-5fb3-8b27-a6c483db2baa", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d98c74d4-4883-507f-af32-7b111d9dadcd", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:68cec66d-e532-54ae-bbed-9cd05a951674", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:addbed09-8ba0-5c1f-a6c7-84f284405115", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:459f47da-779e-5549-bb26-d7e3e1ccadae", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:de292e4c-0ece-50f8-983b-6475de761199", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:76c432e5-bfde-59c9-af2b-f97b610fee47", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d146264-53c2-5304-a8db-af85257546ee", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a4812482-29e4-59aa-90f8-c204ed4b404b", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb2098f5-151e-53cd-994c-86a9ebbe30a0", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02a4b76f-e66b-5fdd-a558-cd24d523bc4d", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ef985a3-97cf-5e4f-94de-40363483d8bb", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:420ad81c-531d-5e8c-83ce-21e9b93de0ed", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ab574eb0-29cc-51d5-99e6-99626a523533", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45e0ff40-e242-5fdd-b8e6-41a807255628", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a553a22-7506-5141-be3f-4c5eae2b73d7", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:453c2799-6b9a-5384-b5eb-d3e52570b69f", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:df3451dd-5440-5c7a-8706-220f015e8cff", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d339d7a2-d5bf-5d56-8754-e6232737b6ee", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cfb2c39-9c6f-554f-b9e6-5ee5a3b8e95f", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2718f43a-0af3-52f8-a31f-ac792109fb80", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-news-module 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a381bad5-613e-5c3d-843c-1534e6094e82", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a779d1e-8a29-5bc2-b30a-f07fe71d0d62", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:540122ff-456f-5e87-93b3-f9338228e473", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2530cd72-df38-5e81-8c15-aed205530ab4", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.1" } ] }