{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:603ab61a-3b58-535d-ba5d-090a28822a53", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-eval-core", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cc70a790-0c0c-59cc-8134-fd308d8225be", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9a1b7af2-2a44-5992-840b-df4af4425bcb", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c8ad87a3-aff1-578f-bf9c-c6cab8b8b1a9", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7f39151-0d8d-5fee-aba2-014b58d4fb2c", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96f5d75c-7969-519a-9f8f-285d4d35b76b", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:efcc3940-b33f-5f64-b8c4-4cb55af83914", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf95a9aa-1d0b-5faa-9d11-76820ac47a54", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9b2a16cd-612f-50c6-bf7d-ea9826d937aa", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0fd77551-0f4b-50bb-98ba-9e2e3b37fe46", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4968c07-4efd-5517-848a-deafbb89e43c", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d9eea2a-33ee-5a7f-a491-046e5439a3af", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:af9f9f6a-aeca-54f0-9e8b-5dc4866e479a", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:09427838-903d-5a02-8bc6-fa4dc929da0c", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b33b9fae-bf72-571a-b745-bde4883b5ddb", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa930ac3-cfd8-5ef9-904e-423f644f23ad", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f60f36df-002f-57b7-af7b-2c5c84326e9b", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13be2d04-8e41-5dc6-bacd-a5ae5a545da4", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0cbc7b9d-17cf-5bd4-827f-e0deeed5b7fe", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a71dcc6-c445-5d84-a1c1-f6dddd654b80", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7eb35ea3-4fda-578d-b794-565ae89eb251", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6082903a-2135-5c93-a081-d26a9c858125", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e12f379-1aa0-5632-ab9c-ff8b18ac9ac7", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b878130-0832-5ff1-9e55-30de2cbdba29", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38ba2a09-6581-5fe5-9df8-4608ea8fc6bf", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f3fa6c25-0335-592a-8988-658570911774", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8dfec309-4c3b-5b4f-9d89-13b2ca10777a", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ab867a06-5482-573f-9994-e396c7e50f6e", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7734a78e-46b2-5e6f-90dd-ac6e464a5b2a", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7507431-292c-579e-b75d-bb159edcd784", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ecb8118e-f78d-58ca-bc73-4f871d47df5b", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88f70cc2-b37c-5a71-b837-d8b246eefde8", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f20c5801-3b2c-5acc-904a-695260df808b", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:11eb1b10-30cb-54c5-98ab-58831ac11227", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d744dddc-55f0-5227-8d5b-07e5f4d0ee8e", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6fecde88-9af3-5a65-9481-6da871f896bf", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0eafcf67-b395-500f-8f38-aa34bcc8cf8f", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67a31ec6-631b-54d7-bf82-3c00ef279c75", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:91d1e3db-4362-516d-b97e-e44ea5935155", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45e09a79-a4fe-56c5-9f64-126ad9005f21", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e5325fdb-00a9-53c8-881d-362fc33abe3b", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b449c59-b7de-5cd9-a2a7-68b281f8103f", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:02373083-92c0-5396-8842-de6e1977c52a", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cc1b368f-0ee6-5597-918f-bbcea483fab0", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9fc2c65b-a4be-543f-83ce-da5783eaf3c9", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a475274a-8d02-5b14-863c-5eec1ea1dc59", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5af9dc01-3652-5c0f-9d5a-ef6c95d2a66e", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f0a592f2-42bc-5d50-92a3-565138b9bb50", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bc724bb8-9bef-50a3-8815-dd8182c4a45b", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval-core 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4693f414-fb2c-548b-9870-e74b882bb615", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e3d4a3c-b197-55fa-abc6-fe705659dc63", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74a30caa-e607-5f82-91b8-7f498b03b842", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a53a832c-beff-5b2b-a57a-9fb0ffd1e3ba", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval-core@2.9.4-tuxcare.3" } ] }