{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6c5a1b6c-b8dd-58e1-8d35-29b764608093", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-parsers-extended", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:20554ff2-5df7-5ae6-8963-5d52b6c30c2b", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6fc4d2b6-3194-520d-b5de-87a3b88a1a69", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c3b927ae-2877-58a0-b421-23876d523044", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b3ff110d-58f8-5fbc-ab0d-a68c164a9c5c", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:369488c2-babe-509f-a487-070a2e1c2a52", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6b25f210-097c-53b5-aa58-d9da4c102397", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:78b3b885-3b3d-5300-8451-2f90807ae2fa", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fa6e3e54-bed7-5676-9246-8a236265f001", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80610c79-fcff-5e2f-90d3-40a95a0cd539", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7ba41516-bf62-5e92-9b76-1a9fbc2e6965", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:650f0a26-cf1d-5e92-a342-ae34a97ed858", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77097bd3-0604-5232-8751-727b0c99e432", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17db37ea-93db-53e5-95db-5934aec585dc", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d414067e-6773-577b-bd4f-0fd3ec0362ba", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6b87c05-9096-5b57-87ba-7539f8c41d00", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bf91bbe5-2b9c-5728-9e50-98aca042252f", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fc60fdd9-e766-58aa-9061-ae7ff07b1870", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:690f454f-35fc-50c5-8e12-20e6c51e021a", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b76203a7-af46-5851-889e-8447c3aee05f", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f153bc8-6e81-5d92-b491-d9f21319d311", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bbd6de11-d165-509e-9679-46624248cc6a", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5158efcb-1595-57fa-96b6-250fc3e2e8ac", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e963b92c-1d5c-513d-bc79-0f3bbd690f2b", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4b443686-411a-563c-aed8-9c082d8bce93", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:758d3980-ca37-5cfd-9b05-f35b80ed033b", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5124b0f8-cb4a-5b5e-8f04-79ab7cd4cb97", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ec45b343-2fc0-5938-8169-6ef46db9a790", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:60c3a003-1f63-54b2-8535-16b96e711e92", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c39ff16b-100b-5423-8c37-975635d46071", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f2d45cfd-34be-5fd3-94a9-654a43cc64e6", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f9c9db5e-f4d5-572e-876f-08bbfaeeeeff", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b82fb23d-7d05-54f5-aba0-54976665d581", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e63100f7-a70f-5e27-bf09-379664520d80", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:96e4c511-bd31-5b91-aea6-168034600654", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4f52bb6-1d1f-53f9-a1f2-2efe915916bf", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69010307-8a96-559d-b8a9-862c32a26fce", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b69b2404-4253-5714-b348-3a4d19570ce8", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2d7ac456-4019-5095-ab59-c1354882979a", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3b898ab-3b2a-568f-b745-4fc2c8617a68", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef17ea3a-d925-511c-bb57-daf087057544", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3b26c90-c4a4-58c9-a2e0-5bee4950b10b", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a2386f9-7970-5947-b720-15174ee76d8e", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d404047-7417-5af0-9402-4ae958a49c7f", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3150d03c-e21c-521c-87ab-8685aebc6ed3", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af232b40-05e7-5f11-bc0c-021e3147456e", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e6c7104-6d95-51cb-af88-e6401a80756c", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b8aba358-f674-57df-aae6-3d828f7d219f", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:453e9b98-cf42-5921-9b10-ec2eeef6e1fe", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parsers-extended 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:97264187-e9e9-5bfb-85e8-81a899b8e6be", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c61a8dd6-69f0-51d8-8c7d-071b7b7be52c", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d106c7d2-2678-5380-bb7d-678489274de7", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5070fe19-2d1b-522a-bd56-2a13d8a72e9b", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-parsers-extended." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parsers-extended@2.9.4-tuxcare.1" } ] }