{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:214bb4fc-c264-5a21-829a-d36f07163978", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-server-core", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:f47790f2-81c4-519a-a2ae-9745ad0dda97", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:007eb51c-f0dd-5564-a731-df45e1d0110f", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5f1d327-2e8c-5eff-b72f-197bbe4c9d6d", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8a190f50-1bb0-5da7-8448-8963fb7e1b76", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d48431a5-dd77-52fa-9781-6fdcc1952073", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0257736-40f0-59fd-a2e5-24ad26385a63", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8db182a2-0c03-5fb7-ba99-05a21ae4ae9e", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3069eb28-e50d-55ce-a2f3-f2c66df5d731", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:db5d04a7-6dd7-5012-ba8e-c97b5aee6a74", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1622caef-915d-51c5-982d-2b62f363867d", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1e13ac91-6272-5ca0-a613-54498834869d", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:779df2f5-0d47-5035-9efa-06e02a290cd5", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2361cda3-5eb7-5be1-9a3a-5838cccd4fcd", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ba4bcadd-6b56-50f4-9226-5e9c5b158015", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3710e5e5-7f8e-53a8-b230-a0d79b2c7888", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b6592a61-50c8-5ac3-9ea2-881392fe4bb5", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e1749e95-a50c-5ddd-a590-4da55b7996ad", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:26c9d480-dd0d-5852-a8dd-1d7c28d14395", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9e62206c-260e-5653-bc8d-4d372db1497e", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:77b39b9a-3d4d-52f8-bcb6-ca47cff28924", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a25435c8-89a5-5b2e-aee5-5e3111eb7c4f", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af66f3de-5ab2-531c-ac2a-945a04b5b539", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c79f579-816a-59ae-933c-a3c32ea2d0bd", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37815f20-f1e0-5fd9-9e99-48fdbe480783", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f6046494-011d-5cf4-b94e-b2ebc2bbcec5", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:507ffe56-7219-5bdd-b23e-ce05cf1a312d", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffee8b04-264a-5c03-bd40-3b6a3656e220", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:613e6364-5f9d-5f59-bc67-d221f89303ea", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4df06b32-b24b-561f-bef2-85278f6eb2f1", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:95c22322-40a3-5d03-bcbc-33885804d4bf", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:47b4dab2-c1e3-56db-bc70-896b1d1b8786", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9ac75da-8e3d-5abc-ae1a-40da0f765118", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1eb76a7a-d5e5-5ca4-bb59-0cd83d02c269", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:02272df3-4877-52d6-9ff4-27ac22d88e39", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ebe3d822-7482-53cd-9a21-a7eac8b006b3", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9a29a463-433a-50a1-b067-5ac4eefede05", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f1077ed7-0985-5322-935f-21842ba7e055", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a379db3-2d2c-570e-b19d-04d382e71601", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ef604e66-6b4b-5bd0-981c-2d4fc3fcc4ae", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ca2b495a-21c6-5cd9-ac08-d18ec3c5e722", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ebc1fcf-6a4f-55a3-b363-95c34f0cab31", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:79f1086a-adf5-59b3-8769-ea8167d2b1db", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ae778d1d-6441-59c3-82ea-3bb7d69b28f8", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2cfa61cb-e248-542f-828b-430760f0735f", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3996cfb0-cf4a-5a39-b459-adcc88762d94", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:901f50bd-11dd-5d53-868c-2eb718a479b6", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0d9fc644-a89d-5fbe-a237-01adf1ff0f0e", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6098c2bc-a4fe-58b9-9cc2-ef41f9a35308", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-server-core 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f777f3cd-46f0-5f9e-83b2-241076d73fa3", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:889e8098-0cbe-5385-a65c-951479c2823e", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:611e0a58-79da-54eb-83fd-49250ee637b5", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4b8e65c-16ab-5ce1-b9bf-c9e7ca0fc31f", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.1" } ] }