{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:73e7aed2-62cc-5278-8e54-a533a6a146ca", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-parent", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:424b117a-dd1e-512b-aec4-26460d7fdea9", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:812af737-39f1-59be-b142-74710c028687", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a014c983-f4d5-5c12-bd8d-05bd8a07344a", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1d2665aa-d06f-5671-a2b7-1268a21330b6", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b6eda1b-9167-5407-9864-0fd9978e09c7", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:50714594-47f6-5e9c-8e48-cf5247c6219f", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26cb3da9-9d02-59a4-884f-807f03582ab5", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:44f77f83-8132-5856-aa2d-5fb3122fdf42", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:14015f3b-1e5f-5f43-95cf-c1ee019d99b9", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6d1de84-dfa2-5dd2-8896-0beefdf6f305", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0ce432fa-eb33-5493-920f-fc366655c9a5", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9fcc4e0d-8a9b-59dc-a282-debfaaf5f6bd", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e3cc4543-c856-5a17-abc8-0874dc299391", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:15d3307a-e7d0-5a7b-b409-584debda761b", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3fb6c7cd-04e0-59fe-8277-3abb422c8a9c", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a64fc75f-370a-5074-8f5c-385dfb1a3d56", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7356427a-8add-5e67-9778-1c70d8934ba5", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9ee42534-55a1-5ac4-82de-c70f7587242d", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa928c98-37d5-5821-83ed-22eb289f2246", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5d06b48-acaf-5f68-ba47-a8eb113b44db", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:da506455-6926-5154-bc3b-083094deb914", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:72e96906-3896-53d4-a69c-2eb240268785", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5cfc62b6-5c1b-5b0a-87b4-879a06ff67a6", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94b72b63-f7ba-55e3-a17e-b7c0002c4fa7", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7cb3388e-c9fc-5f09-9434-8959163894d7", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1a2b9b0d-a8c4-5da3-a7b5-23ea31278546", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ea7c0e70-f287-5409-a3fc-a3ce65c43b57", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9706850d-9cbb-54bf-811f-2606af06f9f3", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7dd68131-25b7-5565-85c6-03201913c9d1", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d6e57766-c13b-51e0-b8b0-1825850aa985", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:47761722-559d-55c0-aa6e-15c6b8b0f51e", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:062fd50e-72b2-52af-9c4d-8b4c32a41007", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c18b0364-cdcb-5914-aa43-7a9c7cd9078f", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:239797b1-4e28-56a0-9326-29de0bf63dc1", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c934170d-9f5e-503a-bfb7-bda920bff85c", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:88f9470c-0fd5-5967-8a2b-132e33e5156b", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:554106a5-bfce-5411-942a-bb1efcb5795e", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4b1b7f31-526b-565d-847f-656599276ed9", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7409d612-3f13-505f-baa6-738d5f0404c4", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:337a05f4-4e3c-5ee5-a460-4744f6290da0", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7910275f-f084-50ca-bab3-2b77c1ca6e3e", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8f5be0da-32d0-580d-9760-3403c233bd89", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d0e333c2-6fdd-5f17-9826-cef0ac6aa023", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13faf265-29ef-5a0c-9570-00c31906b55d", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ae8afa0-36fd-575c-ab9f-afb391b27cbe", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa6616b6-79d9-56be-8ae1-ce35bb3b4126", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9587542-7393-5559-80d2-6290121ab731", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d5b81a8-9de2-552d-84df-324274fd6e8a", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parent 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7333c495-abd7-5708-8926-2a717583b598", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:84af9e00-d505-5d2a-a67b-ae65e3209667", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a2f8a528-fa2e-5cef-ab0e-508647a07e8a", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5f58b6b8-b54e-5168-8343-6fe340e15e2a", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parent." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parent@2.9.4-tuxcare.3" } ] }