{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6092f57c-4288-5e07-95c2-4325cfabbc2d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-parser-xml-module", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e40b8497-2fb9-5714-b16f-2c6d13362e45", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c588d771-8ff5-506f-97f1-1e6d5b0a2770", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5511ec42-7cb4-5a02-a80a-195803b50bf9", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:715cb325-8de2-551e-bff3-37c321dedf0c", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0cd6892f-8138-506e-b2a9-97ca3a6010e6", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ab4cdc26-e04b-591d-9252-5da4a1f1d303", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a5e391ec-47c0-5d52-b991-519b97542f33", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ade8afda-d848-521a-8e9a-8734e57f9d01", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2f51a02-f1bf-5d7c-aa7c-d23630154b07", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1208687f-6f83-5ff1-87be-9033fc19a65c", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7426d40-8a97-559b-979c-b82e76233427", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f19f0284-7f5a-5519-826b-d8739af2b91a", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:90883242-b01a-54d0-a4a3-25e628b9f229", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:caca44d3-ef91-5dda-92a2-6628b821b2d8", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0a47004-b18a-5558-bc7f-3b05179b0941", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44e491ab-fa4e-5bf0-b842-2b33d6bf118e", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9558e125-20b8-547f-b92c-dfa1a2a3e0c2", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5036e453-b5be-562e-9b51-195fbf4d4f75", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9740b585-e797-5e55-9396-836ef8f8da21", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:61ba3de3-9506-5dc8-b452-5e1ca270c96f", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:292b4395-b84c-55cd-97ff-218ddab81c69", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8ac33d6-0113-5d65-823d-962966d83c63", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5a4dcdb8-5c83-5003-b12d-b9da5ff61177", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:81b3f684-c38c-5a52-94c4-417a382c165c", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8d04c042-987d-5483-8597-d06c0984ba2a", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2767be9a-9998-5f77-a8d6-54966e1078cd", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2310f690-1405-5aa9-97e7-5b41767b1c1b", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f7cc4b4a-db85-58e3-ac41-b727665798f7", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:308571b4-b5cc-59e4-be31-19fadc394776", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87121458-349f-5eea-9ed2-057722a468f0", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8f9b20b4-5c14-5e7c-a497-15276451d562", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:68c382ac-603b-5382-a538-771a7b17d74d", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7aad051-4b2b-57a6-8881-ddfd25c95df2", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bccd59ea-1d56-541c-a1ec-0089d25829ab", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b4315ffd-7ab3-5c8b-907a-2920a6fd5692", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ae2b1702-1ae1-5d64-9ba7-9ca0b5da6357", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:466de707-c609-5561-bd2e-10e0606643b5", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:44fef4c0-be4b-5dbb-b840-96229a6962b7", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66c254d4-4369-5342-9669-a5013709bad4", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b756dfbe-b49f-5829-8974-1db3e73d955f", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bc300b74-5ea6-5f7d-846e-93d6a1c8ed67", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f6c743d-0028-571a-9ec2-5c43113dd970", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f02cb837-67bb-52fa-88f4-c1479efc4c20", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b09a0390-96d0-5f89-a5be-8a8af83f3b10", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:56041359-4539-535f-8b6e-77ffce78255d", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7adee789-5fd0-51ae-9ee4-8d22e160429c", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7f8090cf-4fba-50fa-ba4c-6433df472c51", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:91c00b1a-4373-5e15-861b-fb78731bbb6d", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-parser-xml-module 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c135849-15a9-5763-b128-c213825f0155", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2ffa41de-0600-528a-8e4a-f34266286f8e", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59ce9a4e-3054-5d91-b04e-b6256f126cf6", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3fb04ace-7bb0-5508-8bad-a5fcd3a93e88", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-parser-xml-module." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-parser-xml-module@2.9.4-tuxcare.2" } ] }