{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:2d9b831e-5dd8-5d8a-baa9-6ec62514aed7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-eval-app", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:d75b11a7-084d-523e-84f3-636e0bae92a4", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94749bcd-388f-5f5e-bd67-f21173fb5417", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5d526f9-9f05-5584-92ec-85cc50451563", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fab2de80-47fc-56d3-b5fc-675c4f8ada08", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:16e5113a-e9d1-5071-91ca-1c7c9af19117", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0eb1638c-5cc1-578b-9dc1-be0eeb203cb5", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db58ef7b-bab8-588b-ac12-9e54d79c0931", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e886627c-92c5-52f0-9bee-40ddd06ea8b0", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fdd95747-43be-527b-892e-ffabbe4625e3", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:28422f7e-0e1b-5ad5-9774-888adb259973", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:079520b9-ec30-5639-a357-4d74f769736c", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:470f8362-f28e-5f83-baf5-98f55d66464f", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:83ff0bc4-a6ba-5b8e-a846-a920be65b422", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bcacf287-ba0e-5633-9703-e9cccb6ce5d2", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0334bf0f-0164-5ca9-9d53-1bcf117276ca", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f99cb14-d0e9-57b5-86b4-9fe35e163d72", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:190f076f-5807-5900-bbc0-35fe6d61a386", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d9a70f4-f3e2-5c1b-b4cb-fd58db9d13a1", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dfaf479-b21f-5fae-a2b7-e631d1f0881a", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57469c89-c3bd-5994-93d9-ee3575708366", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93831780-d6f0-518a-9db2-f6e733a3bce6", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:167456aa-8426-5ad3-b395-36dc5e5a01d7", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26b30d30-6534-5643-a409-9d21fdec503d", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c95d7532-f32f-5dd8-9a56-f3367019be90", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bfd5d961-9648-5b8b-82be-f822c4558620", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:730f9edf-f7ea-50d3-b0ed-2e4f2a394ad1", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:241dfa3f-9b12-5680-8d66-e2bb66ac78fc", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:619f7e68-1af7-5805-b6e1-763320183798", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c55da5c-5330-5f08-9eb6-2ad1d5f31681", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0de14d40-f737-5fc9-b5d2-5d850f3ebe7c", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f766c41-6976-58c9-9276-114f09550a47", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8c85d7ad-45d9-5564-aac2-02c49928450e", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df84c83d-fcbf-5e70-9520-4f1fdd722d12", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b09fb125-8e16-5cf5-8e05-e0c5246c50c3", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f08661a3-c031-582d-8635-3ab0cadf51e2", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dd869b90-f891-5b71-92d1-b37214eaf9d4", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e45b90e-c1a5-5573-b824-5c1daad172a3", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af3f38ef-b169-535b-838b-660acaa4ffea", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a40965f6-cf6d-5b98-964e-a45044333e84", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:548d9162-9f2d-5514-918a-70e5b15efc8e", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98260529-9b48-515c-bfd7-cce542d3b33c", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb2576a3-9075-56a1-9fd9-2cf23502921b", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1dce1e3-eb34-506e-a14e-2fd33675d633", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:260e26c9-7ab4-5e16-a722-eff2dc025496", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:feaa4656-8a43-5863-9c67-f49b03eca1b8", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a21b99a0-be87-55ac-89aa-29e14d028c6b", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8f18b44-a235-5214-9dee-167b71716164", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:190f5b19-f5e4-50fe-8c12-462c5257ba2f", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval-app 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0987ad04-50a3-591c-adf6-2df55c907239", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:20a62ffe-49d9-50e4-9676-c740927fb594", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43c3dbd7-a2dd-5640-8f1a-2c14c7342dec", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebd4f073-f94a-5e01-bb74-fe44038c2a32", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-app." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-app@2.9.4-tuxcare.3" } ] }