{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5a704abe-389f-5891-9757-285c7c95d9e4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-eval-app", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:692d0824-699e-52d8-9a49-7120d6062662", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b85780d-0a40-5f48-a835-c2de0b21d779", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:122a4a0d-b6bf-51c0-8194-c4727531b493", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:992b7164-75dc-5e37-b8ba-6496d519cd64", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:087876a4-1fc8-5485-a3c6-f5a74ca4aef3", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf647b39-f318-57b1-9678-7b7bb283411c", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2da2923-45b6-5d6f-bd5d-131577b897d2", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ca41a9a-dfac-5396-89da-62f3945611db", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:916ca57c-2098-51bc-b984-967134bb23ab", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72c2e603-211d-56d0-b4fe-f873a4148843", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e68691e-bbd3-5466-b99a-d5336650f577", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a3f195c-83d9-5233-a3a0-a7bb54f0b8a6", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4278f101-39f4-5861-9815-5a3d6b87f8e4", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aee218d0-4162-54dd-8a6a-1255de3734e5", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39368976-4345-5b0f-93ac-681ac95fd2d0", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b383c9b-0847-5c32-b922-4ce3e1cee33d", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17403c3b-ef3f-5b07-b83f-19f9b17e92fe", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1693dbd-4dac-5c12-aba9-457f28a08137", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afdced63-5f82-5606-9534-50c8fa3e7129", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14b3e285-363f-5a3b-8717-05158413dd97", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac94eb1a-c28b-59f2-94e2-c36b79f3e349", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1db2d67-207a-57c6-8c71-ed2e9fb6f1eb", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c0bca5b-3d0e-5cd7-83e0-9c8302617dfb", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8db47ce1-d4a2-537c-b9ae-4e6c19e290b6", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfa38752-0fa7-5d05-a800-63574b8f61bf", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a965c564-e770-5680-82e5-dec7200d57fd", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b51db1f3-0f0c-5d33-83e5-16616d8d3c96", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e4bdf56d-dafe-5999-b481-1e2fb8867b50", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2b09312-0159-50d6-9bee-c34cff135599", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa902dfc-de7f-5108-82c3-d9d588a7af36", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a887ff5e-3edb-53d9-b738-af5b6dc45517", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a1356607-85c0-5c8c-8c45-60c954034192", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da892e00-e238-5966-9ec0-7fcfc0b0a88e", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e850be0-aa5e-5bcc-9eeb-3d626d60f3be", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37209a89-a269-52c2-abc7-918c94d8987d", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0835bb89-ae8c-585f-8e0e-3e2d8496b7db", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85895ecc-4bf4-5fec-9e66-8db5831c951f", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bfb0f49-06bb-51a5-8fac-fa1f4dc73e14", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06cde469-c2c0-55f2-aec1-6a97149e8682", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:841fcdc4-aadc-5362-a810-44411a150103", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b2ab230-cc73-59b6-b4ac-f317efc9cf47", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da6da2b4-f1e0-5b68-bc96-841456eb9647", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4098bbe6-9957-53aa-96cd-260a34f47cb3", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b1d9660-e38e-56eb-bafc-c2c6a01338d0", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4ba789a-c3f2-5d72-8688-aeec4cdcdcbf", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0405d75d-6dcd-5012-97d7-1de56adae7b3", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7886c462-f2da-58cc-875e-b7b777b30331", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:794614d0-487d-5037-9414-8705b3ac210e", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval-app 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:07d5bf71-d239-5d6f-be52-055e8f21afb2", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a85d7e7-93cb-5136-b46f-7605c748ee86", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17195955-c078-5eb6-a106-35821aef3641", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc577ce6-4b7b-501f-bc61-32756452ef9c", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.2" } ] }