{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c6659d20-aea7-50b5-8159-068203fe9cc2", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-eval-core", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:60d5d883-e11a-54cd-830b-07168465f4ec", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11f9bcf7-7e2e-5fbf-99d8-f8cb0e313363", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7eee4c9-3082-599b-b4b2-3468d22c5b81", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85593cb5-4f56-551d-a326-4a826a843a31", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a26677c4-22ec-5dfb-9541-2083c9236400", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e7f980e-08ff-5f13-949e-143eaedfe40d", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e942181d-e132-5f26-ad50-d27703d8c887", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5911f558-21a5-5f89-aa01-d05efa163105", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbdd729a-a617-5d81-af59-cffcbe617953", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:572c4969-9766-5769-87d4-3aa59f3f94b2", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:94b22592-296c-57a1-a372-3bba22a4fb95", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a637f577-65b9-5420-aeb2-feafe3cbf660", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b33a1422-d0df-5403-9e9d-43e3575ad592", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17acf106-f6e0-54c3-b234-5337ca70f2a4", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0b619ade-26cc-5169-90a9-92ee1aacc0ec", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76d2d632-f82a-54d6-870b-9396956fa1bf", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c210cc5f-3394-5756-b311-5e6a76723395", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:43ab28bd-b4d3-5877-9faf-8c27178b4e79", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69145f85-2776-5be0-9533-070045f920f2", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abc99e14-80ea-58c7-9208-74655ff6bc0c", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cc11b0b-6227-5294-915f-2b11e4ff3fed", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:232a80c7-5088-5bee-a8b9-0ffc3e04887d", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccf77db8-4c86-5b03-8c58-e783556b09be", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9e62670-a859-5e86-ba9d-ef24e1d51154", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e6ae0c2-e205-542d-8005-72c9b3ebca89", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38016f43-8051-54f1-a81f-008f45ea164d", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2e716a1-3545-57f8-8d96-456adbde6fa3", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3efb5ff6-e4cb-56a0-b9e0-2ecce6d9424b", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c48b7e7-8308-59f1-bdd0-fdbf1a641924", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5afbe189-888f-5b05-8bb1-420ef14efa8f", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f60c0313-3108-518e-9b11-dedf54bb63d5", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8b6b8ab-b6f3-530d-8b57-f7fd37fb604d", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0fb4a3b-4982-5f38-a09b-2211b40a540c", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbdac19d-62fa-5912-931b-99eb1fb386ea", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:02112737-5d3f-5a15-935c-e79849cbd580", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a503d5c-b979-5225-9749-a9d95cf61a92", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bc7030c-1dd8-5e1b-8dd8-d8f70d3f722e", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc82b5a9-c360-54a4-8768-6cc02f072569", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfd08852-84ae-5727-82af-0d0a6a905de1", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7b82de11-8eaf-577d-88f6-60f2f8d79b4f", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7025be04-a53f-59e1-b939-8fc3b61eced4", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ffdeec3-4ddd-5c9d-bd5f-a071212f322a", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28c4a6e2-9fbf-5370-86b8-2047de467147", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14fd5c45-8c61-5398-8b7a-2472a2838b61", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf7b8365-2f7f-5c1c-b2ef-78053b0446a0", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89977e95-945a-5a88-883d-99b6e4eeb1b0", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a09b2c1-6655-5e03-b249-237b81150ef2", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70177297-05de-5fbd-8a77-22226ccabe0f", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval-core 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:afcb543a-f61b-59e4-b4cf-9fc08f036e1a", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09c431e0-7d1e-5a30-b9b5-a343cdcb3f5e", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7f6c84f-3594-5850-b42b-f6b26323de07", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89281bd5-3f4b-517a-bcf6-233c2527c189", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.2" } ] }