{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:dc3ab10c-8ee8-59e6-9d04-3ce160ec4b14", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-app", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5560524c-aac3-5eff-92c6-478dc7f76126", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74d1d1ab-0543-5b0f-a83a-3c55fe48b714", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a4265823-b231-50a9-b8dc-2086b4b1c732", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5dd2f92-01d4-5a26-8b7c-084d739d5639", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e8af14d-e22e-5e34-9361-4c2cdc3a5ab9", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94a8ef38-72d4-5381-938f-d24a5eefe7a2", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfefc047-33dc-5de3-831d-d5c31514a866", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4f4984d-1053-5aaf-a54e-717bdc6b872c", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11c158c5-6a77-53d4-9f5b-61d5049db2cc", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0a8e4a8-8307-5ebe-a651-6f25c9c6514c", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3fc7f1ea-a65e-5c7c-9a63-839d4872fd03", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44fb49bf-918c-5e09-8f08-02d2b838354e", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c10314bb-ac4f-596c-b167-b60beddf19c4", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8432fecb-ab46-5335-bce0-b7e48e4f9eb4", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f4193fae-332d-518d-b5df-2af0eb0af72c", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fcea688-4460-5954-87e4-e53e8a1e6877", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:868e8f27-3ffb-54ac-bd26-291bcab6e9f6", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2fa666f-757d-57be-8426-cc4f5e556e52", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab24b340-f300-5509-9d4e-32ce6d9a69eb", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6fa6bb84-3860-5e58-b497-87d947b87eed", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4605c0a0-c01e-5548-b70a-ccf9d7d73ef0", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45070f0f-3345-5635-b0b7-c994d3b72e7c", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c407def5-801a-548c-8df5-4168f81ccf12", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3ed9b1e6-5ffa-51a7-9fdd-96ac4f6bf898", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fa35472-c317-55fd-b9b4-e901979887ff", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de97e178-ef12-5d93-ba26-d064e78fbd39", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43cdd82e-3c3c-5949-8670-3de907e17837", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c11bdb0-baa7-5a7e-8bdf-ee4fd454f875", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:58ade3dd-0233-5769-8322-dbcf17a9d7d7", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:395d6d0c-7d03-5101-ae01-5826373045df", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:720d796a-a2c5-55fb-a04a-ac2547bc46d5", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:061d02ee-aead-5332-9ee1-54312a6daece", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42462628-6238-5fef-af56-58901b5e97e8", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d8d0995-0815-5635-b57f-ad1857d23375", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbce2a76-78d1-5407-bb30-2103364d026a", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f28fadcb-5eb7-56ec-9e94-30743ff5a855", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:183dfde8-c728-58b5-b586-b23cf4ebe419", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7999ef79-a9fb-5b6c-8079-794e69ddfea2", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fd4e3e6-e034-5fb2-97d2-fe1fd0e86671", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a311d47-3426-58b7-9416-9a86da280453", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4100e824-ca35-51f8-850e-eea40b90adee", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbf6d44d-5ce9-5019-be03-f07d27c2a864", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68087879-ba5d-54aa-97a2-78dd8f8bc559", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75eb9f76-ecf7-5430-af9c-727b0b2f4c42", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:621a0e3e-2227-5f9b-9be5-e1e4e138cc51", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6cc4226-ed01-5bd1-b7fb-c2f34fb1650d", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:079b24a1-c06b-5a49-95c2-c6ccd323a99c", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5f0219f-9579-509b-88ad-fbfcf64a21e0", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-app 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:801c632c-f3be-504b-94d3-059f8aeadd7b", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a435995a-0fd6-5097-ba6b-388771b43dc4", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62af3519-6d49-5296-9d45-b9c6dee83f08", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b95e8abc-68f1-5493-85f3-300e69c73bb3", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-app@2.9.4-tuxcare.2" } ] }