{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:eba58ce9-0422-5610-92a4-dfccb7ecc985", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-dl", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7c584da3-39df-5c92-81fb-380ec2bfe992", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d31c874-6c59-5d7c-a2c0-7a6aa444d51f", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5be25c3-e8f6-5e1a-9817-12f3cd0ae48c", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c81eeed7-b648-5e26-8d7d-a718417a9da8", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72f427f5-e5b2-5b0b-94b1-f2b1667db69f", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c1178f7-8bc3-5671-800c-d01cb3be9322", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5d9ac0d7-549c-5bd3-ab8b-b4649adf6a59", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5d25a56-8686-570f-b9d0-af8c3c0e0d0a", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d4bb2160-f773-5650-8342-7fbd0bfb8161", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4dec658c-87b2-503a-a5c0-2e187163acff", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a209f0ea-1d52-5f9a-8e53-d5f4f1ee0eb6", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94583400-1291-557d-9c56-526e7747159d", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c4dc5214-94ab-59fe-8109-c3167cda93dd", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4a4be43f-9dea-5753-9af8-602a33ae3126", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8cd096e-4ce5-5ad0-8b2b-d15fd983365e", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3bc1cfbe-319f-5c6a-a836-48820b6f447d", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c423f708-7b56-5baf-9464-df5a69a4e454", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7f83971b-1fac-5653-81a3-f51bf80392b8", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1451e16-c6da-5dad-800c-5c758d722da3", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c689625-a1fe-5471-8478-ebc6364eec34", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77e3388c-11d0-5043-a427-4e2b02c10221", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fb42764-0d39-5254-b454-00056d8c39bb", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3f35998-e02f-5db8-919b-32cf92c83cf1", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f30469b0-0d9a-56e1-b963-13b2493dacd3", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d9fd5d66-731b-538b-b0d7-21bef53d2ac6", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9673349-9231-5d2d-b0c4-f705ff404570", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ff479589-023a-599b-8404-f0693849f5ce", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:638024df-5533-509a-ba67-504fdd9c0afd", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6de21086-6b5c-5edc-8465-a01399df18bb", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12009f3a-146f-58be-b722-6d66ee57272d", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74e0d05f-1c3f-5f24-be4b-eb7f10dc5fe7", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:27766257-7179-5729-b641-877137245d3d", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:46642fbb-5baf-5f21-a1c0-7f9431c81133", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71f99738-d778-571c-a5b8-e3ef0e17b439", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8068fe7a-d50a-5303-a63c-0518b27b7bd7", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:668079f5-651d-5c91-8ba6-8c7b6791ddc4", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcd52e8e-8007-5535-aed5-14ad3221337e", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61971b78-d453-5e01-87d8-ca7eef4dc4fb", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5b62db9-c472-5ba5-b68f-5c96693ed4d3", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d91e2f0d-75f1-5dc6-ae29-36929b2c8d46", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a5ec1389-f733-543b-b678-b262928cb882", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55d46b5e-807f-5da6-9eef-8a025445c392", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0cb2fc3-933a-51f4-b7ae-b0e8b27c5a6d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:612a73ce-c74a-5f39-bb7d-90f3c97b0980", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4d6761ae-af53-54ef-8b01-4d9a917e505e", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf32a9be-4f91-50d4-86a4-5a658917e368", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:842a4ddb-8bf3-516d-937d-44542aa64dd0", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66794be6-78f2-50f0-982c-0d7d2edb04a0", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-dl 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f382506a-2f58-5968-a448-bce295d82afd", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c4c268d-19ca-580b-8346-16db326be1a4", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4655ed9f-2510-58fc-a62c-a26e03fe2352", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b9cd734-d61d-5acf-8105-a453ceb85bbd", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-dl." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-dl@2.9.4-tuxcare.3" } ] }