{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4b1f8a05-2095-57ac-afe9-8c660db65adb", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-parser-font-module", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:4b6a2b90-bb63-51fa-b444-e84ccd94386a", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f24c5cb7-14dd-574e-8c71-0dd5620513a8", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29dd9562-2de4-5ae3-a142-01461e13d341", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:234aec2e-4fd6-5259-b526-505fe58dc059", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bb9cc109-f839-5859-8296-f423264bcfdc", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7ed4c1d6-f07b-5b44-9ed2-c3aa73334076", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c2a7e97c-bbbf-5ce9-b8b2-fe04b985b539", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:244416b5-51f1-5889-aa5e-ae9012321e93", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2517d76d-fb07-536b-abb8-524a9845d0e5", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2bd8948a-d8b1-51f9-987e-91eabd9089fb", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d11f1a86-3992-55d8-82c5-23397a70a75a", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7c66ced9-5041-524b-95be-5c5984314975", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e7eba8b1-1bc7-59c6-a3c5-b65ed2ec281e", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:64f4d37f-dfdb-51b4-adde-38c1e313e24d", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7d64974-c477-54a8-ae35-ec1fa6be0cef", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aa548cdb-8794-597d-b865-b72ba1538197", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2cf2f1e1-51aa-5600-9e97-13c823cc1a67", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:426d93f1-1ac9-5704-a21b-14c0df328e26", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79d69f6a-65bc-5b8c-820e-645b598a06bb", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:12079a68-bcfb-5bf4-b329-5694feb21f25", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6b6ae53f-ae75-551e-b9eb-d7673ab6e9e7", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d14d9c62-61ba-5a58-b966-293cf8d1c18f", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:340a6026-f053-563d-aac5-48693ff86fc6", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21434ce6-9fb0-5d51-9053-14fcb78ceed5", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9782f13d-016d-5d8b-83f6-9c809ae9e8f8", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:235b7f25-adaa-540b-ba6f-0cbffa294377", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ace103df-cf22-5442-8f97-8b4efc55c1a2", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1b8fe298-1d76-5806-ab8f-f2d104a476df", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a19d755a-9637-58b4-9d44-a25c7704804d", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2d7f2757-cdc4-5a5e-abf8-9ae54121c57b", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b9a47fc8-69a1-5c50-9dc2-53a9f929be60", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ef84ecdf-f4e9-5524-85fb-8280addbc73a", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b72ac47-13d7-56ba-b886-be75fd2f5626", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d2fa51e0-f68d-5981-afb8-1f9d7bd49e2b", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1135aa25-d12f-5824-ba61-c8706fb6df18", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6932230d-1327-5cac-8e77-eb3572c2d629", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f9277d7a-46fb-5fd6-a554-49a7b056fdb8", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:acc209aa-d613-553c-a088-8c8aa5aaec03", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:69f937b5-270f-5358-bcfe-4a5c39f67564", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9c9f2cb7-1f7e-5f63-86d2-a62ff32d61d5", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:216c79c8-0d7e-5b4f-a4c3-39a913d79958", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:45d66762-38ae-5d88-a2ff-f314f57dfbda", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:caa32042-9633-5b09-ae3a-24b6944efb26", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29e1abca-a51a-5b39-aaef-0840e43b0b57", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:49e9bb1f-4e71-5fb9-802d-2c971051a3ea", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:dacf18e1-847a-561a-83b5-2076590825bb", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5240c195-ac00-5f6a-8335-ec17cf593f67", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:de84f603-75b3-5604-9cdc-a903e0313a1a", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-font-module 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98a20499-a521-5510-a588-923ba69ce4f0", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d00a137b-3e23-5678-ab67-60283bfa5cf8", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ee30547-8762-5563-a402-15267ee0636d", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:30799185-1971-5995-820b-36a81189cd1b", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-font-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-font-module@2.9.4-tuxcare.3" } ] }