{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e27e690-9f03-5e4e-aa0a-96608c2488a6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-fetcher-http", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:452716c8-96a4-5974-a7b2-a36473fc43d8", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfbdc4cf-fd46-54ac-b872-041035042bb9", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46ebf53a-0f12-5b86-909d-4683cf9b7a1a", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1b6271df-3557-5528-b0dd-1b609fadf2be", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:382be37b-0b28-5185-a9ef-cf729128edde", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:508034e9-27a8-526f-80a4-addb8be16b69", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:48d90b2b-2f9a-58e2-a270-58f27a505145", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:861f84b9-e7c9-570b-993d-6f4a95032be9", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fb19f87-2b29-5916-8f29-e2fead3bbd87", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e0261dc-ef3e-5c6e-a65e-4dbc230532d5", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e20cebf-0f78-527f-b649-adfc6c704900", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:909b657f-fb47-5ca5-a5a8-d7039fad615a", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e3fd1f85-dc31-5135-a41f-efb7770f9fdc", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:524a2980-bdc9-5853-93eb-d65ab50482d2", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8df5bf93-f388-5e4a-9d7d-e3342dd6b1ab", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7bce255e-5d73-5de9-a40e-72855c35c71f", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc1ea4ba-5f78-5ed5-bf9c-50a4027f711c", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05d6763c-6706-5425-b725-70b809f0db22", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6928a342-3a51-5a6b-aae9-4f1e28bf2467", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8c740e02-88bb-5149-a239-71a33993f600", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7c284ac-fa92-5897-b7ea-8cde65ecf1ad", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:506ef69d-5163-5911-b997-387531776b9b", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7466ee3c-1562-5f19-b4a0-bd1a28dbdba9", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2a298b3-7847-58ef-bd79-6fec8ab955c4", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5890c7f2-26fc-5367-b014-681306a5f417", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:79ccf8d8-886c-5cba-918b-126b8de7a224", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d02ef4d-b917-5d26-8cf0-d1fcf57eb662", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6d5231a5-f28e-5258-a175-664d11a01cec", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f49ea8c-8aa9-5d07-bb88-21607dbcaf48", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ca2e9d76-fe1e-568b-b8bf-2f4c6a8856c4", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2aedaa80-aa6b-56d0-8bff-ab61d62522f8", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8ebb5161-2053-5da2-b7a7-6938be164f15", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1f5477ba-95a5-5953-80a3-c8c399e2f351", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7e72164-8647-54d0-a4b4-4d6faa177e15", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2e9661f-e604-56f8-8749-ea1d90d5f523", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eba442a4-02b4-5742-ad74-db3adc84e7cf", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1df7b4d1-6c3e-5bed-b68a-9aedf06f5959", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1fba8a06-860d-5ce2-8c28-b07406438fa6", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d16de002-da7a-5a26-a033-de2387834794", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f807c859-f436-5278-8969-d362c2facb2b", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9f89cff1-a0f1-5c33-9923-aa50b813e20a", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36145e96-d753-5d38-877f-7960f4696733", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c3a3691a-3359-5dba-ab01-67c8e101b0bf", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6b156cc-44a9-544b-b05a-47f4264d57fb", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4f0b7a4-62ea-5119-a759-ace3fba8afab", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5d882f3-e363-55f9-8726-64f5ba60d105", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aba897c2-6c21-5189-b46d-2a518e05f821", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:76291252-be15-58c8-a320-2dd0df831813", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fetcher-http 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:312f65b8-e8b5-5fc2-86ac-5e77e0d54a2a", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f2cf639b-7f83-5d20-8548-14d517389f42", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f797cd3a-30bb-50ed-980f-9f8800d8c88f", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e2f17c60-0e0e-57b1-a253-0dc40272570e", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.2" } ] }