{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:324b44e1-5187-588b-8c52-38e8b9b3dab4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-parent", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4b76007f-cc38-5eda-be7f-256644ab0d57", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:507b74ff-0b10-509f-b87d-12552989b592", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4e785f76-b68d-54b7-96a6-8c6c1e25cf0f", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d0afb14-7393-56c3-b1cd-46626f37ec6b", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:492c58bd-d788-5fff-864d-5025625cf167", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cbe7486-bd44-5316-8e6d-65797ff36b65", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eecd015d-0411-5639-b4ec-522bd5a6717d", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a28dae95-d034-5dd5-abc7-02c1d6003fcf", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:39ee5f79-d1c2-5fb3-ac44-c4ea04af8559", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b00610a1-0d05-57bf-8faf-4ebe7fed0e7b", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f73674b4-a4c6-5089-aa8e-db1a08730145", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0dc0396-63fe-5ed8-955f-6a214e409700", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:45129202-ad1b-5bb4-b9bb-5814f2883c19", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:27080686-748e-58b9-8db2-c8116b4979a9", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f6abbcc-b270-5084-bba0-724d29f29b99", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cebdde57-d8b0-59c1-8452-36349c0e173a", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1635dd32-38d0-5cc9-b4d2-db8e18ff9ed3", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72c4f995-41f9-5c7c-8d5b-2cb82d0e6370", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1bf82d09-1444-5be7-aa97-893728277ad7", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae70629d-da6d-5b75-a780-85e485c7aff3", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c76e2f62-03f2-5131-927f-de4952f94c61", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88e54448-f8ba-5bec-82c0-8c8023b12921", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:00dd8e67-9622-533e-8159-e6926433937e", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88198299-3121-56ac-88c2-a98cce5f412c", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:67a13098-21d1-5350-bfd6-11e023d47082", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b574a937-df47-51e1-a2a1-b03618c5a7f0", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3e149460-c193-56cd-a954-4cf117ee53cf", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e26f556a-81ff-5d33-8f92-21a7b3d4c337", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10d67c75-3c7f-5062-9249-80289e840b9c", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52f0cbac-d102-5714-a073-9af89cc0f8e7", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9263a4ee-d672-5ef0-bc0d-ad44b399cb88", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:159a62d6-6f1f-5c2f-8a08-154cf9a31c3f", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7d3d161-159e-5a2d-ac99-ea8ba0add40a", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1c5ba508-c1f2-57b0-aef9-edb7245be362", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5949078a-e2d2-528e-ab72-166fec043336", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04565e93-c9a2-520f-a51a-5e13654be3c9", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ea191a29-374d-5027-819b-b0c97619b120", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f5f81065-85cc-53aa-9b7b-1474a1594aec", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6c55a515-2925-5c77-bebc-904be5656e25", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cfa0b7bc-5155-58d6-8d8d-32c6466d78c2", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4363efea-9722-5fa5-9c36-887460606a7d", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c53665c2-2c43-54be-b50e-23bf934ecdc9", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:51cde527-1a9c-58de-8e64-7d2f8adfa10d", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcd768b7-83b0-5b66-85ac-a6d3c5b42164", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40dc9b76-0278-5e4a-96a9-918c3d51f031", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b700d5f-700a-55c1-8ea2-8d9f328a98ff", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:884beb6d-9969-5ef3-98dc-461b31d58440", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:644cada4-958e-556e-9af9-f8aed525a6b9", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parent 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:69ad8931-3f1a-5b38-8df4-aad6de1ef82d", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f7a17f0-4b81-53c7-b986-007a6231ba9d", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:989560b9-d130-5b88-8c42-baa0565017e5", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fd996074-4f32-586c-9b21-99b06e1ab0c1", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.2" } ] }