{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:cc34b424-8406-5fa6-b6f1-63e99469066b", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-eval", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:7acfab7f-6b1b-5418-b2ae-4a347622a296", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71518ff1-48dd-5485-9e2f-b28c734be3ca", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a1042e21-d12a-59f5-85ec-051c0ed29f9b", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bee8761e-2149-5751-87f5-9319630b94f8", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:544d0700-253f-5b95-976f-78fe5fe285df", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e69e2000-9432-5400-b048-daab87bdc1b6", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8375c0d7-12fc-5da3-860f-59460abc320f", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6426a113-2480-5e1d-99e3-d8833485bc66", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e6afab6-55fd-567c-8982-e048d1516a3c", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3c248d79-c34e-53cc-829a-95682b7c9145", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:397fa965-4c3e-5fa9-8319-491fdef2089d", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1fa25412-8b06-5f79-9457-81d8bbff5ae3", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cee44c7a-127e-5e3d-97db-99e4dbf56fce", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de60930d-1f97-52db-b371-96cd0be1d717", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:10520f4f-7fdd-5508-97c0-88638675389e", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b8a23c6f-9d31-5c0b-8440-d5208cb51021", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aae1094f-a95b-50ce-98b4-233a2f37690c", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21c03db5-8281-5739-87ff-86b09ca5ca60", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94f9d867-7e47-57e9-b40c-bd5508e815fe", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a15c3771-8430-5d7b-8bfc-2d801790ebcd", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5c4836c-8eb6-5e9f-aa99-51822cb37cc2", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:62d4b75a-17dd-55cf-aad1-5a711e98e523", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b0fc5ddb-bb2d-5adb-8636-6eda6a1b2a7f", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d68667eb-03f6-5560-b35d-49b52ecbee1c", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18a414eb-a1ac-5b62-ac4e-f638471e3b58", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2135ec7d-f49f-5f24-88c9-8436c2c46e0d", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5958efdc-c0f6-5a0e-a8a9-e3d998968384", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ee8658a-0d16-5e92-886e-8bc8e1db01e0", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a171313-cd57-5f4d-99dc-7b6ec8fefb77", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:645df934-4c70-5b63-85f8-a3fc9b488f92", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:52309b16-7d92-5f3a-b10c-50292f612054", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0f775ea4-6896-5a36-af15-50bbcaccab53", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0bb2c21-7728-57e6-896a-2a9ecd13a928", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b2a1898d-8bb1-5c70-808e-28485b8e7f4b", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b64a27a-6748-5fec-b9c5-a1d803208462", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f62541f-749d-5505-81a2-ef873cba5a76", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84a1713d-ae7e-5df3-880b-d17a80747841", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0652653b-ad1d-5551-a209-84289553ed03", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:afdc619f-ec35-53c7-ac6a-2cb876b1a7fb", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e2c9099a-db90-5362-9061-4ea4c5a17afc", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d722d085-c1dd-5c34-b7f4-d168c3eb193a", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f06b94b1-72f2-56c3-8b38-75aaf95eb93f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9f6b14c7-1c77-5737-bb43-5de9c37a9ca5", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b8dc620-a3ab-5d67-880c-4cd30ef8dc08", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b147ecc5-5ef3-5e2e-b6d3-673ddfe38bc6", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa3c0d56-135f-5302-b19d-b7e7f39c0bee", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7facb150-15df-5c4a-8c5e-5d02e773089a", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:80d10d96-d3a8-547c-b699-2dc92f8c8a50", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-eval 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17b01134-c362-53b2-a3a0-f052b6a51b07", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:531cfcd3-7f71-5151-967e-85d222a3cd36", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9e96d6a-c933-51be-8c4b-b26959dae3aa", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b8a1d60-eca1-551b-8b5e-1c81f1f6ea2c", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-eval." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-eval@2.9.4-tuxcare.3" } ] }