{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5d326d15-48dc-5b65-8d9a-716b6e008af0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-parser-news-module", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:93d52cce-f66d-5c87-8ec0-cbbabca95522", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7284ebfc-e0ab-51aa-93cb-0b4d5e9176cb", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa85d12e-c4a6-53c5-be41-7a5f4a98888a", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50230c8d-2a49-5c7c-a89e-e876668e8893", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c7eb7db-d03b-5c3e-be20-56bc4635b5f1", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:967cc267-9359-5e10-9a06-2bd5be1f9a1e", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ba6248e-7a98-5d6b-9a8c-fb163630723c", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2f0dd7ed-2bcc-5200-a84c-7f2e5ef2969f", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c2de7813-33cb-5c30-91c5-70e1fc7a629c", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8da5816b-fdd3-5e02-8508-8b0441adf2df", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6ff4828f-5aa7-58b6-b52f-60cd10e1d9cc", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f005f78-4ab5-55a5-9eae-2a97f7ff9ce6", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:722b4aa0-6144-50ae-918c-49c22256904f", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ad3ecfc1-afc8-5a94-bdd5-4e9018dcbaf5", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3577548c-11cd-5ab9-808d-c5a36529bcff", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90380bb1-26c0-5f9a-9d95-cc43d313c5b2", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c9e7ad8c-5d20-585c-961b-d1f69705c5f0", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f9954684-2f7a-59d5-9bb6-83ec5ef30e45", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:951e5185-4dbc-5205-bb62-c193dfedf30f", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3d6ed9d4-d677-544b-bd01-d68d31c5a46c", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1dee5f12-64da-503f-8308-d2c32a422d17", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54ef3c52-68ca-55b6-9ecf-c50b93b7c3f1", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:46285f79-8731-5e9d-a952-273b63bc7d7c", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9b30d493-c7ad-5aee-b554-5f1190a446d7", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4fd27abf-57df-56d5-98db-dde23126958e", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a8c466d-f57f-535a-a38c-b88531a52924", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4c4914f-ec3d-5f57-9e38-2e19a2d1e015", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d0cadddc-2de0-5166-aaac-7b79321369f5", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:af900795-bda6-598a-8828-2e2931d7c502", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2a543cc7-f86c-52e1-839f-d43f2b80f62d", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bac21b66-33e8-567c-a48e-d56ba8de0ef8", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:11b1589b-198e-502a-8ea2-4de8c83e9fb9", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4422c805-069d-50da-ba5b-5648f1e47444", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19d0ddc3-d80a-5751-b1cc-0b3319d7af61", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6aee2992-8580-54d5-9b2c-dcf5186b8dda", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc34200a-f5ae-5f6d-8436-f29bbd0cca20", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6c79e0e-8615-513d-a694-eaeded677cfa", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ba6e112f-9903-5285-baa4-f45443309c8f", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:255f9241-fda7-5686-90ad-219ad2565f3e", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5cd4e0d8-1c29-5441-956a-78b2f9463140", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3a2a1eeb-f40f-5f23-a2f8-0b5b99a3bdd1", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:acf8af50-9185-58f6-8aa9-2c658c0eb9d1", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a61fbeec-0529-58a5-9d18-c47a395999cf", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b48a6aa4-04b3-557f-863e-01f3be5675ed", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5481112b-68db-5021-b9ec-67dfc54cc9a4", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:40917d7d-81a2-5fb0-b916-f9b2bd3396a0", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:abb777ef-2710-56b7-afc9-2870aba6fb65", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4b04509c-285a-57de-bb5e-aec825b0ec3a", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-news-module 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cde4fa38-6b48-585f-b54e-d30c31799998", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2479eb1c-99f1-5136-9971-9f2bfc708e90", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:19f43e17-516c-5807-836a-5276b08f884e", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff514b92-4df3-510f-a24c-6156706ac290", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.2" } ] }