{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0516f20d-1ff7-5b1f-8e4b-cc9fb6a7d1d9", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-dl", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e8401742-86a8-5341-9f12-1219cf267bf7", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85071861-5047-56e6-a7db-ea4e788122d7", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9cdee4f7-a63a-55af-b805-76756310038e", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac20857b-03aa-584c-8007-6442a2309808", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd67c2d7-75b1-5be1-9ae6-7f70c9cee4a5", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b028395e-08a8-58c1-b84c-a29b8f7c56be", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36fd11ca-f54b-5133-b4e9-825869e2a1fc", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f7f76c9-c8fe-5843-9c1e-82f6226cb035", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a9e7d6f6-5dbe-5ed9-bd68-16228d0e2d1d", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34fcf98f-f162-5e85-bf85-f410754d8186", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:719e6f26-4777-5339-a07a-bbc253d413af", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41963a92-4446-5f81-82f7-fc608dfedfa1", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05fa1018-6c9f-5caa-a22f-f7cfd2715a1e", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0916a53c-1243-5a44-ac2e-9607c982598f", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2363c611-e1c0-5ab1-907d-d7dd4a7af614", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff30131b-6c41-5ebb-8796-9d58babb2b3a", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3822f275-5bed-51df-b878-f3f0d739c602", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:42d10e8c-83e4-5813-b369-a22fe9bceacc", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:75c6c84d-44ad-55d3-80b2-909543c1b364", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1cac10f-62a8-509a-817b-7f9bf689b3a1", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d42b8e96-98ea-544c-ba9d-07b0b597ff4d", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8aa028ec-6246-50ff-b98c-d8800f4ea429", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69adabf6-8c98-5d71-8001-500a98f13787", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:405e5f66-fc4c-5356-b56d-3adb2189b56d", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f0a1b72-a367-5d7b-a028-16766ecc27bb", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0725e68f-c275-5917-bf39-5319f294ae71", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e9b536c-2a50-5b85-a505-9350b751651c", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3eabadfd-6ac2-55f2-a62b-e4396773694b", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:210fb21c-919a-56a5-9ce1-bbeaafdc75b4", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a07a1cf3-ea2e-52ec-98c5-697bfa0ca510", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb107f2c-b88a-5e44-b537-f891865b1e43", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5fd68c82-8488-5bc6-b7f5-818203ef1a16", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53937670-b5b6-5d04-8ccf-c44821cc781a", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50a3fce0-76eb-5e5b-856b-0bad1f0cd9ad", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06d6699f-9155-5597-9b44-d8041eab20ac", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:156137f3-869c-598b-8c6b-043c8e433797", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f30cbe3c-2b8d-5cdd-9f08-d1811ec03a47", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07f8e510-28cc-5d3b-ac5b-96ccf6b2374a", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0739d7d6-935f-5d41-b62a-4f3d9dd8ad9c", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2710bd71-8c0e-5203-894a-83a14160733a", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90f70bd2-9cc8-50b6-bb4b-f60cb69d6448", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b2be69f-3ae6-5d5e-93c6-f61b4d43142f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfcce5fd-5cef-536e-b5b7-c516b21a1c28", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:31d0f882-37e0-5885-ad3b-8e710b1841cb", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a48452a4-fb82-5712-8004-d00dc69b6127", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fad079b3-aa43-5edf-a20d-2716bec4dd3c", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:487115d1-d2e2-5d03-85d7-b127cb4c915e", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:416a3433-993c-5564-b9d7-de3f72153395", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-dl 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0539493e-b7c3-5ec4-aca9-3c28fe5b48d9", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d468145d-670f-554f-bd04-2a70ac35f107", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9aebcb63-f358-584e-ae9c-5d4b33d10161", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ddfcfb7-7b22-5dde-8518-06986a8cc923", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.2" } ] }