{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4cf602e3-d434-5419-bbb0-8dfb7e301cd5", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-bom", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:42bb8a6b-ff06-5b70-ac14-f422ab59c8a7", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6faec1c2-94c9-5b03-91be-701f9fc1faa7", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14ffccd0-e8ac-554d-9e41-f98b10996192", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c257f4e-9d2a-59a0-8bda-8a2a67084443", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5f22c0b2-bf6f-513b-818f-df1ee702eedb", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d75d4411-4d2d-5f70-81f5-37eec3db0029", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:13bdd377-06ed-5bb1-a0a5-c4bc1e2b1ff2", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ada4552-b503-50af-83cb-d195c314cf75", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df89d9fe-203e-5a05-89fb-10ec0970074d", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5922f37e-3865-51f8-aa2d-eea93ec088d7", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a348fd7-b5a2-5b5a-9df5-516d01f292e3", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9ac86e7-269d-5913-b4eb-ff22775c4c5f", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d4fcdb9-284e-5d08-add4-614c76f40747", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:26da1c33-9407-5e21-9810-1a8bb819e9ee", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad4d2947-9fd3-5312-b5e0-992fc6c1fd56", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c351c46d-9082-5f0e-b4d2-28265d216ff2", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69f024d2-92e0-5f39-aeed-714959d1abc7", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5980891a-06ff-5426-b57b-b6bbaabb04f2", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fa02aff-63fc-5b95-bff6-542704749dbc", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b33733fe-481c-536e-bc4d-6beae99990d0", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0d69e86a-2339-5be2-bc96-ee8f729aa862", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55dfc462-0e55-5d22-869d-8bb1fac61ca1", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:654a99a5-2567-5994-afcb-a3c733394333", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24bf0469-88dc-5f5c-bb2c-b833a79d713c", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a63b4beb-5e4d-5615-a40c-3477ea0cbe98", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0de99d48-b131-5f14-8cfe-e201273d9e82", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f9d8d4a-1a0d-5c1a-a67e-4fa131f51b01", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3186046-2853-5d68-808e-55810d593136", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98f20220-528c-5c45-a706-86f0451f6d8d", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8698cc4-58f4-576e-a6f0-34c9e8d2b490", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e35fc82-b609-5053-9462-cbaaf375b41c", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92fbe96a-1fb5-51c8-8545-c46f7bfb0a7a", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fe0bfb60-0c46-58ec-a77b-5aa5bb54f6e8", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7081d484-ac99-5132-a7eb-6d1474e69226", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:25be4d6f-1c92-5661-81f2-cc8ae4561f5d", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b51c7c7-26b8-5cce-a06a-eb114dab66bc", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae20fd52-5d81-51bc-915a-e86b01710016", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:baaca603-fdfe-5d6d-9077-3590191eb3d0", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7507f85-c482-586c-9c7d-52c7aad54fd6", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c666d9b-e924-57b9-9179-af17cd8fdddc", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:868f4967-1029-5b94-9696-fad1b0c16991", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9d479cd4-9e4c-5897-9305-99540e4fa1b7", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f5369bf-4c16-5e09-a8ad-146ab0b482c8", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7305c390-3799-5fa6-9864-db3c8afafff7", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50ca1696-cd2c-5b54-8c83-8b072986d352", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2ec67b5-3aeb-5887-8252-2ea053598b77", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd914ba5-d01d-538d-8e26-e78da98be58c", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb3e4303-47e1-5247-8587-16a1d6976b52", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-bom 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71672e71-3047-5a04-b1fa-033411ce7ddf", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d92beb45-e633-5f49-ad90-05bf00f43ea4", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c941d55f-15e9-5184-92f2-01c3af68b76d", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d02d8674-cb2e-59a9-a376-75879c25fe1d", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-bom." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-bom@2.9.4-tuxcare.2" } ] }