{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:b833a6b7-c2b3-5efe-8d96-5debf9a39bc1", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1", "type": "library", "group": "org.apache.tika", "name": "tika-server-eval", "version": "2.9.4-tuxcare.1", "purl": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4282b2f5-2918-54c7-9485-f83ce8f77dfe", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:306c8822-8bed-535d-afcf-3fec07562ba5", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43f15f15-195f-510f-a5f7-127d7f9bd5ec", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6f815e2c-2564-5eb7-9c35-53b684d73460", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c40d3b70-dee1-51ee-9d82-dc8dc3eb4067", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3d75e488-17a2-579b-b73f-bc4abec9abd6", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8ca5d0c-b280-53a2-8251-c3bac5d84e73", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3f1abc35-bc58-5196-8d65-ebedeebb9714", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4573fdbe-f44c-53d4-8f32-6f6982980bae", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f76728ec-a98e-5a99-94d5-84c361ee8060", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a6fb35e4-ac65-5fd0-9e19-1728bb60b7a1", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:11e1c87c-3533-5bd4-b955-11f16d648e92", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3ac90eb9-b597-5406-abfb-bf41e1c8555d", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37ddf9c9-77cd-570f-a593-4e9ec5dc3972", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6eb894ab-3a1d-55fc-9b9f-e427d4cf67ec", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5b990657-27fe-53cf-ac4b-420532f3a708", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:419b64c8-138b-5b0b-a911-bdaaa5c77cd6", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b7d5ea2-ba3d-5fc6-b72b-d1fd7bf6e67b", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:322b123a-5897-5b3b-8270-3fb969e78bef", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d258c1c3-4bdf-5c2e-907e-f00a05aa53a5", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6e1fc5e6-8a5a-569c-9c6a-9219cb47b2a4", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:924022cb-57dd-5786-ba45-43f02eedddeb", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c35a5ed6-70cf-5a39-8ad0-066f83f25c25", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e739dbba-52c8-5ba5-a0c6-0a1afd553a02", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a1b3b6d-0fe9-52ed-8252-dd13abddc060", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd1f3c7a-8e1e-5ada-98e1-6612f3d37849", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:25acb6c1-711d-559b-9767-961bf2a3bb54", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e4db9453-946f-5530-962c-16d6aca40b07", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89e48f91-be3b-5c38-9c63-994c5549ddec", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:523f9893-fe6b-59e3-b35c-9de8741471eb", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:82ceb219-a93d-52ff-92f2-091404bcbc40", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5685ddf0-5f05-5501-964b-e53b4c3c25e1", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7973ed9c-ce3f-510c-bc0c-51c06f8b2456", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:adcca6ff-e2e8-5855-a73f-10ed3c501347", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af88147f-2157-55e5-9d88-1f279f84b590", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7a62b56c-ec59-5f5a-a4d4-355d941416b9", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3daf23b7-e64e-5c28-8c5f-77df64bbf4b4", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d4ca8b56-4a72-5e17-81b3-2185579f27cc", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e2549491-d5a3-532e-8dfb-60ac3613e407", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:27e0be1f-a006-5d4a-a8ac-cef2600182ff", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8c224590-018b-5fe6-8424-3a27350bae43", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5d1201e7-ec21-563e-9f8a-849fc93eda78", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6495b53-9ae5-54d5-872e-0df2dc1f9478", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:905cdcfc-7243-586e-a6bb-f198b6b83acd", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5877309d-a300-5fa1-a16b-625ebb55a686", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:343d123b-e550-5c16-a569-cd1432e9f22c", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ded325b7-2a03-56e3-ba7e-a5c304f2a1af", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:03cbdd3c-f9a9-5dca-90e2-039c001078fc", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-server-eval 2.9.4-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0eadcb4d-f13f-5fa9-8195-40e3a1fce7bd", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:88967c99-cb82-5a5d-82d5-2c5c76bbfd98", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:af79f811-3376-576f-b51e-65e0781d2353", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8cc3ce11-cb29-500c-af9c-3cc49c02ee97", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.1 of org.apache.tika:tika-server-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-server-eval@2.9.4-tuxcare.1" } ] }