{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1289750d-8f8e-5c21-ba34-01d95181f493", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-pipes", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e9ccddcb-508d-58e4-817e-02ecc5813a23", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b62419b0-a761-5a9b-9c5a-351470f46eca", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d5794b5d-ff78-5a54-beda-79081b731aee", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8e7591bb-1afa-5fc7-a48f-3ef2ac144270", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6a7728e7-b68e-5f6c-8656-4f1edc1046af", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c23b40c1-bc9f-5a8d-b052-96fa03f6d625", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3db5fea3-83e8-5221-ae98-5b7830209e5e", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8724e996-5716-51a6-8bee-27004db4b31f", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8a06c9a0-eda0-53ad-8213-0a491b955de5", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:113127ae-77e8-5b83-93b3-e54cf631dfdc", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:06479273-b60c-5b3a-8c91-ab6b4b97cd8a", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bd928e4d-6e0d-5f79-81e6-aaa0b6827977", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ed317e04-9617-51ed-a8d5-45ea1dae4efe", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d7d9664a-d4c5-58d7-a465-81dca6f109b2", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a533cca1-60e2-5134-85ed-0f7cf5ded464", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d2de441d-5822-55c2-b949-4a970b43315a", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ded59c0c-0e55-532c-91bf-6c114d6cb172", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e7ad8912-931d-52cc-8837-a03c847a2c3e", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e58b5f79-8edc-5d8b-a550-30dbb1b14027", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4468c0a7-7c8b-5530-bd11-61c36de29e02", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a2b5b7c-62ed-5feb-9ae7-be423b61e47a", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6dcd974e-e52f-5079-91ca-1ea075708b29", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:38e03244-0e83-5b5f-aa45-0680eb8ba1dd", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:52a53800-e8f4-501a-95a0-226c1b1ed75f", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1965504-c3e0-5b6a-99eb-9bdf92ee5e0b", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7654e45b-46c8-5f98-bc3d-796b94a076dc", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:50c6d7c4-474d-5044-b3d0-c19929ec99ad", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c5eea381-cae6-5b34-b322-d727660273d9", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f040d631-60f5-5fb9-8a9f-d82197dc5656", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8cc84596-69de-5885-921c-899d6944b162", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f435644-2477-5c45-80ae-997267d4ae8b", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66ffcb57-684b-5bba-9d30-d5c2e9f517a2", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74058f64-de46-5f9c-bdf4-4abc9c7c95a3", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e8c019d3-d198-5204-9ce3-d5e4c31e00ed", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eef907da-8ed7-5f93-bd0e-972baedf6222", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbbf9db7-16e1-56f8-a2d3-31ca6f8d260e", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bb22e3a-73fa-5a13-8bb7-5a3dbbf23602", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fb6fa8c1-06cf-5d33-b046-14dffe6d1382", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6f6b1099-1169-5313-a8ae-5106b21538c6", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2cd4a9d6-e22c-5ced-972a-717ef8185810", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd123deb-9851-5a66-889a-b7545d48493b", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:14544a9e-814d-5775-a2f8-02849266e92f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96f61027-fba8-51c8-9616-142d790c2dd5", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:30d3d00e-aac8-58b9-8e26-673666736bd6", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6475c005-f633-5b68-80f1-19422d935365", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b40789ea-ea11-53c2-8774-bf09a8a00205", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2fc1825f-7166-5bbd-a703-964b4755d0ac", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:982cde48-d3bc-5509-9628-eded25dc9791", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-pipes 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ee6c9534-0c8f-53d7-bf71-9b1e6c7461b1", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a26db02f-db3e-5ad6-a73a-3d26f1f63919", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:36964737-19aa-5ed4-8bf9-9c968d2389a2", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0ab846d-1480-5c8d-8230-dbbcf7c146fb", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.2" } ] }