{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:12552e3c-fe35-58fd-b155-58a5832b8e1c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-bundles", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:da5fb06c-e5c7-5993-a2a2-41fa3181fc38", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93c577fa-58e1-5bbb-9d71-cd883663308c", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:06a05b5d-854e-55ae-aa7f-560072b77163", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:459bb3f6-f6c6-521b-95d9-cd50363756a0", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ae2007f-b43d-5a73-8fc6-37a6ca970d6a", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da3ceef5-3c91-541e-8b33-5c3d0bd26e92", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dffe7a04-8a24-5f67-97b8-2be77c5ba1a5", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0765b3de-6530-5b99-935c-d526ac521042", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e1a65f3a-e4a3-5146-93a4-018b7060281d", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:caaf30a9-ef0a-557a-b211-35b7ba0dada8", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84bf89a1-897d-5019-892a-b43e9f70216b", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13383622-3767-5bc6-b484-83c639049bc6", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de0fbdf6-fe07-5978-8306-ef44c0b856da", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9bc9728a-bb02-56af-9588-bf52f857f4ce", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b92cec5-79e7-5c1f-a5ae-cd952b2c443a", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4a628db-9b83-58be-bafb-2b4decdb90c2", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2987f515-98a9-5d10-a772-254b51fab267", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:248245c2-8708-5a46-a589-70323c0fe86e", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e83aa711-3d63-55d3-b0d2-71dc63be49ad", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84863ed6-0e32-5bb5-aef4-92c8e6e02326", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3956a1cf-f258-53db-9615-32f0e37ecb57", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dbac3ab0-9135-5b9d-aea5-b3334bc3f6d1", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2643e25a-8fec-5de7-8fc1-23ced87d8115", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe3ca2ad-c9bd-587f-8e7e-97d1eba6d79e", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18b08b86-0603-52e0-bd50-cb5cce02bb8d", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4e8ec6ec-dafe-540b-a190-c2af5b8774a8", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e118d268-fbe2-550e-8966-f4260d3f8828", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3cce19d-886f-58ee-8b4c-cad7da8858ee", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:995f8855-8f66-5aa9-84a6-d448e62efbc7", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fe64c916-91cc-5d28-8a98-03502d7d93bf", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a77a25a2-e2f1-589a-bcf3-a06fc05cd8dd", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0095fa20-b74a-5d0a-b58f-669fd1fc3c2b", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:961ee873-6aa6-5524-887c-dd5ab82f8d99", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:384fc32d-78eb-5ce4-adc4-048ede54c9b8", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ee308f25-4582-5fdd-a778-62c7f14152e1", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:385696eb-1cb5-5234-ac5b-4c772cddc083", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4410ffc-19f7-5052-99e9-ee563988badc", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d512093-45ac-5911-bed4-403a2405b364", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6f90b970-95ef-50a9-9045-ddc45e5e03ca", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b2247c3-5549-5497-97c2-285b180f8695", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b90685c-73a3-5767-84f5-c835d44f6c0a", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:60ad0b89-253d-52f0-96c8-f396888e933f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4f2d5fed-5538-5284-816e-a5c80a3a53bb", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2ae7418-09a3-53c9-980e-9e565b47eeaf", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1114201-ef01-5af0-841d-f3a8c3f4a623", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:95307e49-e1f7-51ac-b9f4-328db3e41ec8", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fc23bd5d-131e-5dea-8274-0f8010c72392", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d8ce5f6-6439-58e6-bcdc-051558dd7ef9", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-bundles 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7375ef5-1ffb-597b-9a01-1de3009a0a8e", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b9ff61d-749a-563e-9ce5-21c3acc94c1e", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4f197b7-0ded-5fba-ba39-be2ec85ba86d", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0458ea03-51a4-5f14-a386-577777e76b31", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-bundles." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-bundles@2.9.4-tuxcare.3" } ] }