{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e6ee93af-3b63-548b-b576-eca7527b1d92", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-fetcher-http", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:84639d6c-3a98-573c-92f1-4ca2f0b0a719", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2da45f60-440b-5d41-ac77-4b8608c353dc", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c386fc31-a3d8-504b-a0cf-e5478858669a", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de62f78a-1ef6-590e-8288-f84291d671fe", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8a44b2f6-6fed-54e9-89d7-a01fcddfda49", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d9e820f-0be2-5b7b-9a83-ca4ee9b996bf", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8317d14c-eda0-5ded-9f3b-1b080e40fc41", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fcdb34dd-b7b1-5bdc-8227-12aa5f8e657b", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:613ef001-4ac7-5174-b1d7-955e83ff1063", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fbd274e9-9516-540f-919f-11a63910b313", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:128f924c-fd49-5de8-a1b3-dbfce35d69c3", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:54ce36e4-fd00-5cba-bcef-a971e7adee75", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:17c1755d-4fcd-523f-86a7-e67f5f863c39", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:260d70ca-85c2-5689-8909-0fb032aea0c1", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0e93d103-c0b5-5128-a7dc-b29ed6de0e3d", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b31887d-97c9-5953-96ee-ba36118feef7", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:58078ec3-8c10-5e93-8a0c-4621a33b3e89", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:477a000f-a52d-5416-b767-029776aa2fab", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b77e822-5989-519c-a640-64b27a49818a", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df8fb280-b667-5d8a-95d4-77c410541cf3", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f11c1d97-0896-5ef8-8aeb-566f5372601d", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5e3f5786-0afa-56ec-9593-4aca92f3f041", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:210c7a87-a46a-5cc9-9802-462de741c5d3", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:db67a6d2-c028-5b3a-b8aa-ee3ecf0ddfdd", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d5c6db39-299b-533c-98cb-c7d7b2c83c76", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77a3ab2b-92eb-568d-aa9e-335cd1c59d56", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97327405-2e26-5e53-9f78-899c026a11f5", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01a0233e-4f3d-5d33-a04f-48a6d81625d9", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d94eb511-63e9-56d1-af50-a3af7f0269c8", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42a3a4d4-bcae-56f0-9890-52e13429dcb5", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19f0951b-ea3f-5dd3-b0d2-a92d540d31b4", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2085467a-2c7b-548c-b9fa-8ccbb5881ced", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30e20db9-7395-5aed-8e7f-c310499f00b5", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b3e7811d-8fdb-5e32-aa1b-7f7b26d6fcc5", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:66d5757a-2c87-5001-96ee-40bd7f300f55", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:01e40bd8-2aac-5281-ac3f-8cd3bdb5f50a", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8cb95528-c29b-5c69-8556-6b1cb987b059", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:237393cf-086d-5968-b071-72fcf0818a98", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:71108e9e-8d76-5b46-94ff-8ff0fa24a468", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e10a7a16-13af-5486-b508-0f6ff2c5b621", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77071e75-b9a1-539a-a856-991fcfaae34e", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87755e22-7367-502a-b7fe-4bf21a80c209", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6505de6a-1a22-51c7-9d93-1bd56f027659", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0a9855d2-82e7-5b42-a298-1ac5348ff6f2", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9bc9cf7a-5ef1-5b3b-bd10-2804d96ef66c", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:53eb87bc-322f-514b-bb29-4ef60bcef1dd", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bdf0f45d-0300-5d0e-a83f-c9191e991b9c", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c5d77158-c521-59f7-bed7-9a7081c2c762", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fetcher-http 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e0084024-bfda-5b73-83ec-cd483353967f", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ad325db9-1a12-5e02-90b6-05b5fe4be2ad", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a3f4be4d-34b8-526b-b613-b7ebfe284838", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c04630a4-7ff9-5fd8-90d4-8d928f869edb", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-fetcher-http." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fetcher-http@2.9.4-tuxcare.3" } ] }