{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4e31c27a-0511-5cf6-92ab-b75169784fc0", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-parser-news-module", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:845d0acf-c231-5251-a2ab-4b1eee944c34", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:42bdf7a7-3b91-5bd6-b9cb-f45ebc19e726", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ca75b1d2-de0a-5415-82cb-8c56bb8e5518", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ceae5dc0-461f-5701-b810-d94b2ddb3cba", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a51d21ad-7414-514b-8d6b-7c3b53f6f42b", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:87a3a264-b4aa-56c1-ac88-c6f384cfc812", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2f8e9cd8-68ea-5417-a8b2-73b3fc434876", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac8e9c6d-9213-59dc-ae85-885332e6d195", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c56de925-b070-52bc-8016-4ff47c869ca1", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:40d80d38-cf33-543d-9003-796900bf9e2c", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:006afa01-d25c-55f1-9e42-a0e527b10084", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d7247419-d863-5a7f-bcf5-ce65d3738c85", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:55245bb6-182c-52ab-b97d-10eac7710586", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18f3aa52-b909-57af-ae17-75708a92ffea", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d838afe2-0f09-5ef4-93d6-52e6d9e76034", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e14d7874-dbe2-54a0-87e7-16ec9ce561ad", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e22ae25f-398e-5dd5-84ca-27588a48fab4", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f29fb9a5-16f8-5033-9628-e3a959acef2d", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bf6b9d92-d9d3-5f4d-88a0-31d310a95a11", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:77b56119-e9f8-5aeb-ba09-a127c608012f", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:497f6cb7-e84d-5682-8501-b8d315423276", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:04dc9f1f-9f9a-5ddb-a891-b029210cac5c", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a35251b1-5d2a-526e-91d9-768a9c8e0075", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:843e335a-7976-52d1-a027-04c67e6faf73", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2ef6cbb1-819d-5df1-af5a-ba89a9c15242", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9010a22f-ff84-5b38-a4db-e6f9f9991721", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8b92f6f6-9ab2-52ef-b73c-28fcb0e68270", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4be2e2be-f739-586d-962e-da28bdd70fc2", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:043b7fb0-1b45-5d6b-88c3-a39bd3dd1728", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:61a88da6-145c-541c-a42c-d6a284f8a457", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d694db5f-ffb7-595d-a51d-ca49d4dda270", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8039504d-3b90-52e6-9be2-0135173ce7f8", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ec50f884-0d3f-530e-b0fa-a1eaebb129fe", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8d7451c0-728b-5297-b0d2-14362ccd6e80", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9130822e-54aa-51a3-bbac-26e3881cc5e0", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7a464ebb-fc99-50a3-a0bc-05778bd22e06", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:67e41d57-2cdd-5c2c-9838-ea18680b3000", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b5111a38-0fb4-53ca-8701-82a9aaf51743", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:430bf522-cc08-5310-afed-96ea83331dfa", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c17f9b7a-5e12-5732-a4d7-d29ed062992e", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7b963d85-024a-57e5-adf4-2209d9093983", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fa51f4af-6352-5f79-b9a1-358a60990054", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e4dbf64d-9395-5752-8a9d-a969292e0167", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:df7c63f4-bc6c-53fb-a3ad-d60e69147950", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:395e0104-c6ff-581a-a58f-e6df60d9b2f2", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fb5b3d22-344d-52d4-b8d6-108731e9760c", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:13bb7e40-c321-55d9-acd1-d48b8ca4d732", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6078373e-b21c-53b9-9e5f-b84516dc55e8", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-news-module 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:53db9a36-4069-5f7f-a566-998e2a55ad61", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9297982a-57b3-5d46-b203-9d7ab3bc7162", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7498e292-b3af-5571-8a59-3ff0cb6f09bd", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2687aa62-0733-5ea6-978b-b24a2c8b5267", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-parser-news-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-news-module@2.9.4-tuxcare.3" } ] }