{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:50901d79-121e-5228-a267-8db68640c559", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-fetchers", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4da5c8b2-2b1c-59ad-9fc0-1756917e660d", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39826e3e-bb49-5142-a7c0-98eb6c631bea", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:41f60de3-f85b-5b61-b2b5-38548700f1f9", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90b0b259-1dff-51cf-a95a-a66972343c8b", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9a45628-bf0c-5706-805d-9b64d766043c", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf082acf-cb86-5890-8c23-fc302a61c101", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2eee770a-894d-52a0-a350-9d3be95f38ff", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f3be130b-9417-5333-9d07-5ea8a8490485", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:649f473e-7547-5e4f-9fbd-b57b5aad711c", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:394d9fff-28bc-536d-8ffe-8e3ccf25137b", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:28044f3e-0190-57a6-9b6e-599d2afa8236", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:21eb411d-2850-5f0e-98fb-f7023ae15dcc", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:09be58ff-0d71-5549-b29e-cdcfae22788f", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bfd1cbc-99a7-58f4-91b9-13deb34554af", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a716b05-5fc2-5cae-818c-28ed42cad230", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70485a63-7816-573e-9101-4abbec11d3cc", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1966ba58-237f-52c0-9f87-2124703afcdb", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7246a510-8a29-546f-8cf6-07abfd73ca9b", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2241d29-868a-5dff-8501-2cb5027bf6a5", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:84ea5560-fe76-5000-b01e-f2c8d9524b36", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e6b00213-c14a-5f03-a5c5-63bf05f7eb7b", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa43a459-3be6-511c-a260-a85a8c560545", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4905e243-d411-5450-b854-1318bce7f575", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:62d453b5-4bb6-5e48-bd3d-c02e49a78aee", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8bb95dc3-f951-5e8e-8b8e-8af967e1141c", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:509942ce-8521-5cec-acb5-071d3d18eded", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2334257-9139-58c0-a70c-10c736919e6a", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8fcac05b-b61f-5e6b-ba87-b3a99163dc68", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d946ebb8-84cd-5d7e-b740-aa9afbea8ca5", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5efec6c5-0035-51f4-8286-0e9e72567b13", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82070cdc-ffc6-58e6-b4ee-7ffcc4c96841", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a79b4e6-4e6a-5de0-8047-7dc40d2892ed", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2eb69b30-c061-5ddc-9d6a-2298bedb9522", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3bfbecd6-2576-51e8-b343-b40167d51d12", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9238b547-933c-537f-8fea-b0fcf0f8b63f", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ec199202-ddbb-5464-8c30-64d43b0c9e2b", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d693a6ba-748f-5449-a5d8-56c025f8b345", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f51d3d3-b447-5961-b2b1-462bbd381122", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb744942-31bb-5ddd-a3e7-52b416ec192f", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:995ea8cf-0f8c-5df5-a93d-7aa6235b1741", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d8da9936-aa7a-56dd-8fc4-fa955fad43e5", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2098999-8601-5c30-8daa-d95d67a4d565", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a259b2a4-acf2-54d1-a7ef-b61875c12735", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9ec31e6e-b663-5058-b9a7-322bb098d8d1", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:896244dc-d6cc-5b0f-96ca-6236ef4a0a23", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74684737-c853-5750-97f6-40f5e6c568d2", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd0c0862-afda-53ac-a209-87a8427c637b", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3c2cb46e-c74e-50aa-8758-dd6721574b97", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fetchers 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4356e93c-d8c7-51ee-9e2d-203abb8b61d9", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6515c6cc-8d4e-54f5-aaf1-3c9d5e87a03e", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:80c9b771-868d-5170-bf20-ab0f2df90349", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36820b78-ef8e-545a-9b09-9d794b68b855", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fetchers." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fetchers@2.9.4-tuxcare.2" } ] }