{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1314bcde-82c3-51f5-98a8-31d8746005cb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-pipes", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:9c37376e-b141-58e1-81f9-d4c27934ceb9", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64610d0b-3b38-5070-9b56-c74b50def3bb", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e116649a-4b9e-58b1-b659-20d444f80fe2", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cc50b39c-ff30-514e-a225-2b067db55fed", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26c94a29-f3ef-5538-b63b-489edc79f532", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:64b728fc-10a9-5a7b-bf8e-a7bec27b32ec", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c90d1068-99b6-5cd3-b057-f838af046efe", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86b1059b-02e9-528e-9343-0aa1361d1522", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d39b1aa-2c15-56e3-b3d7-2bad6b2a09ce", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69ed3bfd-3997-5004-86c4-7de549b2d446", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e6b8797d-8a3b-5f4b-8def-275e4f0dbced", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77e27a5c-df2d-577e-b4f8-e0c43711a7e4", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6334489-a846-573e-bfe4-096ade97e6da", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:22918f5b-5f71-59bd-9965-4fa056476a57", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8a22e0e-a672-5ef2-b13b-acb81856ad6c", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b09809ef-a7b5-5496-95bd-330eb3f39dc2", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca75d4a4-7b0c-51b3-bcb6-ad581b2770db", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7620b597-e096-54d7-b804-48f551d8b37a", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:99b71505-eb90-5a6b-b61c-cee69214f6cf", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:86d2389c-409d-529f-8120-43d852cc8365", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:887d29be-ebdf-5b5f-bfde-1a17ee09f7f2", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b927acbe-73d3-5c2f-b200-dc86f6280c03", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a69aadcf-cbed-5e3c-8be9-d0e6b4b41082", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1db5bbae-0e2a-5fab-b77b-fa78c118a121", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:46413546-f313-50a3-9286-644d12959dce", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:91e2c1ba-e961-5612-9898-412d662574c0", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8078db5-128f-5fc4-bd1b-2e099d073d5f", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6d6c3e60-429b-5997-a0fd-aa18d9165724", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1f9d73e-64a3-5500-913c-eb169fc781d7", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c98276b-d486-50c1-a5c6-0d4f4a97b2d2", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:69f48a49-c0e5-5b0b-8df2-6ae8d2f668a5", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ab7dd1d-b49d-54ee-ad8a-d49c35d0d0fb", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b4b560ea-2486-587d-a606-199a8db833d2", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bce8252a-b3b9-50a6-ac83-1c5a89862218", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e75ef279-e2d7-5d87-8aa8-4d91c8f217ea", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a477bcce-ce83-53e8-8b82-a3d4185e4ae8", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9f6bf964-8e92-56d4-868f-c962666578fc", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:87ff14c7-4c29-541c-96e3-3701a9d00dd0", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f186c88d-6df8-5b8f-9bd6-56958d5bcbfe", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e87ef878-f6fa-5dea-a984-de792a05e6de", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d072635-13e8-5e51-b4d6-0d5a666ab3fa", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adda2d3b-e07e-5397-bdc5-e12ebfcc0536", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6a1da62-1d5e-5fc4-9675-0511b7379064", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:06335037-4b8c-5726-b302-ca283da7d2a9", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93747d1e-0728-5e31-be2c-5b4c8544ee20", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:05430a65-2dd4-52cc-b3b5-66e077b07a00", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7d2393b4-fcbe-5752-baa1-d494809c48c2", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6585e3f4-c0ac-5d3e-a16e-7e56a84414c8", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-pipes 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f988830-571b-5d7d-9296-23d595f63b70", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4204823-ff31-54e6-bbc2-7319ff734347", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83f5bf5b-67de-529c-93bb-f47e26267d90", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:14c1d126-a9c1-56fe-bad8-c09a076ec2b9", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.1" } ] }