{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:fd7a9985-d0a1-5d83-8b7a-1d12ad2e1e09", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-parser-font-module", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5dd6e7cd-4506-5d68-8867-491a704a9bbf", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:15a7b464-ede5-5a74-8727-ff33ae276cb4", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f225f6f-f11a-5c52-850e-8b576a96f994", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba562800-8cdf-508b-bcac-61d0b48d6c67", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ce9b2e0-9dcd-5ab2-8498-f9a47ee0bd03", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb89dd21-331c-583f-aa88-573b6d596da0", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:99da1203-7f96-5d74-a8d3-f58dbf2904b5", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e84abc01-5248-531e-a08f-47dba0b39987", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9873fbe5-64cb-51cd-8431-97e1093687ce", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cee53cb2-d946-5f3a-b605-9c47b83622f1", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d62dfc2-e9c4-5bd2-8592-260d9d0e6025", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:264d7110-3ca3-5144-9758-bf1e54a480b6", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82b1cbae-b02f-51bc-a821-1e024943b4a0", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5bb86800-61ef-5cb5-9c0b-a008505dec26", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:117cab20-44d3-5579-a47a-43a152208599", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a46046c4-5671-5a44-a68f-49fe1035ecc4", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cf0d2893-431c-5803-9ea5-0f4982739d30", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:359d35dc-00f0-5946-9447-382fc20603f0", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e1b1d62-03dd-5815-903e-23fc4d68e8a9", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:261b08f7-dbb4-585f-9745-3028d1642072", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4727f659-3435-5411-9604-00b2e58b4ef0", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e654bea3-9315-5e01-98a9-5f959193be35", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f8945fb8-d4a3-5508-bb92-5541b7794eae", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6568602f-7c4b-5616-8d4e-6fe97bebcce9", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:061f229a-b101-5988-aa15-82e38486dc39", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:89ce2dfd-f20e-5c96-84ab-9dcd3cf4bae2", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ebd89edd-b02c-50a7-8123-84a9afeb3b6d", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d428678-264f-5c0a-be03-c2ff9bd17881", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5e310ee9-24a5-5458-ba66-c6e7395fe9f2", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:83f2b991-56cc-54cc-9d2c-fd078813f15d", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c54df553-c1c7-5c4d-b009-86daad7de44d", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:177588fd-be8e-5a11-a013-2f5acb0b0376", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f0092fa1-0b69-5551-9349-bb0a85adbfc3", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9c5182b5-e740-50c9-9fe9-1a4c54b86d9d", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19addf46-8ef5-532f-90e6-50a003303c09", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fe8ae26-efce-5743-971d-b00dffe56caa", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:631676b0-bfe4-5595-8e59-85ec9591fcc3", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7ff69a46-10fa-55b4-bade-f62e53025fea", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:35f13041-3065-560c-ae8d-6abb9107883f", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:541cc188-078d-5b80-a183-58e331e91303", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1ee9ac9d-939f-5903-9006-da0d73acdbfa", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b3956a1-18c1-52c5-bea8-be8216ae3018", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:72846672-6c95-5d27-bc54-b3e951334469", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f12b044b-a5e1-5733-a03a-6a9cdd6fb7bc", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:92feb2fc-79cd-5afb-9127-eb78c967c2ce", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ac39bbb5-5291-5745-89a6-6411b699a915", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da290986-16a8-5338-b454-d96103a8eec3", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0a262214-0771-53f7-81b4-559498c3e4de", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-font-module 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:524691da-4b1d-5a76-88b4-0d76ef3b0063", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ce57f33f-f985-57b1-9ab5-a0113d23a40d", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:10f22e68-3469-5d27-be19-69da017fc481", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3aa729d-90b5-5643-aeca-11cbcf9fb062", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.2" } ] }