{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:371cbe02-20e0-58ce-aeb9-7051ce25b177", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-fuzzing", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a67b5e6f-9e35-5556-a0c3-fe75f897d7ad", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8446eda7-1eae-5079-9138-a4e03ba5a90f", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87de1855-e181-599d-bb22-7ee7170e9aac", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89368cfe-bda9-581e-85cb-1f116892d8fb", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e97ae193-806c-5f3f-95df-375b67cd3bfa", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2b1a08d2-c1e1-510f-b411-213d8187379b", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b9c4052b-79fa-5b73-a684-0f8fcb963ff4", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d3a6e44-0474-5fa2-bbec-a2682b4e9e3d", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3b473157-6263-5c81-8a42-ef7988e77607", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:518f8206-2d28-5cb3-915c-2634273d139e", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9663cd78-2c6d-5844-977e-956f8c15edd9", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a2d15bf-c5aa-52c4-b828-2fbf845665c7", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7677f277-abf2-5707-b150-aa2bc156c3ee", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dbaf599a-2923-5d30-a0ce-71ca922ee887", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2abfe9ed-6b30-58ab-8f88-387e1d325102", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a88eb593-76e7-5a3c-87cb-11a134086573", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06b455e2-f55f-5e14-8004-a5e169c72726", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df6a0cd6-9fd7-5814-b6c0-902f783de4ed", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:086f8474-3371-58c8-b208-aa9936ea5f5b", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46049622-cf02-599d-a998-aa1c416d8b26", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f958fe82-2d18-575a-b809-5db331990849", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:601af349-473b-593e-9c95-213f82278bd1", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3a7f76f-8f22-520e-be24-f18443d07663", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3f199b4-31f3-590a-9ddd-f82ba2145ae9", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74cb28cd-7f88-559a-a84e-78e8d733de3d", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c98320f2-902d-5eba-83b5-f457c703a717", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b7617a81-0ee2-574c-b5f9-0856b3cde644", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aad4cbcf-8e5e-5bb8-a5de-108cd5c0057f", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a59f9403-f539-5470-820f-759c178aa6d8", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:34aae0c1-aeb7-52c1-96f6-6c94237311fa", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:20a27b09-3d20-5dbd-9e69-c870d488bf50", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:53baceaa-433f-583b-ae51-0582aa218989", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b5cdbd6-534f-5b6d-a657-704e4a58f3d0", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f641e26e-97b7-58f8-8d99-335e0a8612c0", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:05e78850-5952-5f6c-8052-2dd43fd3b907", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:49c311f3-27a2-5a13-ab57-cb0187e52075", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a211895-17ca-58f6-b46e-bcd7b9eb9b02", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51aa950c-4157-5344-861f-4843f0b46819", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10a654fb-a59f-54b1-bd9c-f075b59f35b7", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17bc09f6-c65f-5e7a-b4eb-ffb4d135c651", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b30828f8-2551-53c3-91cf-0f09d8367205", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:beba1842-1e9b-5b5a-be38-327342047e48", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac77ec0b-6b9a-58c7-bfaa-2255fd91dec1", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c82c6c1-0f55-57a4-add7-afa2749f4e64", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ef3f84f1-5c78-57a4-b68b-73d4198a05bd", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3cd8c3da-a54d-503d-a581-8d470b6a198f", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:464820df-04c7-5f62-8585-38d30d99b8b4", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a084d07-8de5-5750-ae1e-ea2aaa96a72f", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-fuzzing 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1a0fe7ad-0c7b-55f1-ac72-ee670118bdf3", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d52e11b9-04e4-582a-8100-0c00f1e6bead", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23f7e3e3-7e39-52f1-9525-d826ce1dd9ee", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2546391f-dfcf-526b-b4ec-76e1a76efe9d", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-fuzzing." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-fuzzing@2.9.4-tuxcare.2" } ] }