{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:7e71678a-d2ea-5260-8c7d-ffb739587769", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-pipes", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:df6a1211-0d5d-58a4-8c15-3a1569384467", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e9a36512-03f9-54fc-96b5-661950485f50", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a56a12ab-5639-5850-b2d3-d0e071fbf2a0", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1ea5f0c7-f022-5863-b0a5-8dedb16ac68e", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ae3f536b-d75a-5ed9-a9d7-2107f40ee495", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24f94e6e-06a0-596d-9681-f6418bf6ed50", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:19cf1532-942d-50f1-a6c8-b5917f442d4f", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:96b75574-3dd5-5e2a-974d-c730d338e1ff", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:29ee25f2-26cf-5f54-be50-dfcc2d23af09", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:41de8d71-ef59-5c31-8979-67eb76121ef9", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3537ba64-33a7-5805-b87a-d068314b523a", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c9d98b1-056e-500b-9868-4bb57ba1ad58", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7817281a-c627-5263-a332-e5726bbac6b8", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ac15bf18-ab08-5959-bab2-735b2d801dda", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4213655e-36a3-5fdb-b7db-d003781bfb34", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:1655ef61-1668-5643-8e91-010264e89c9e", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:81689279-45b1-5102-abde-31859f834d7d", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c20294a0-1650-55de-b512-a55dcdeb2700", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f1d11afd-079a-5351-bcb1-2bf5f750b1dd", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:257b508f-0a59-5ebf-814e-b595d60ab190", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f4fb66ef-50b7-5df9-a036-73392ad26f3c", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:cfe87b99-6649-5ca3-9834-bb5015c8768d", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:79026d62-7f46-5a6d-8a34-d9dde412992e", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ba92fa49-39a7-53ab-80cf-c13ee77b68a9", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:addcd478-f7ba-5b7f-a185-d2b1a1585d4d", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a7030069-e6a2-5eaf-b179-790ccd0c40e0", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:93e4d641-fabd-556f-8138-74aa7b453a14", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ebd3db22-71bd-527d-b0ae-c524ef5654f3", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4ea6127-1afc-541c-9380-91517bf214e0", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c790352f-e520-51ee-8099-31aedc062ec8", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2fb2bd88-7099-592c-97d2-7cb7425d442c", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:873b533b-9e62-5407-a201-214a8721b8f1", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a4c12f12-e1eb-5e98-880c-b3880c09c30b", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:27c2fc12-f0a1-51a8-996f-d8238c3bcbed", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:38b8855a-50c0-5fa9-a552-009592343743", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:94ff6413-a346-5a5b-8ce2-80d5e9157d61", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:eef080ff-1ad2-50d8-bd40-db9bbd793819", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7600825e-78a9-5668-851b-2b6c1cd964ce", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f6000ee1-fa70-5d3a-ab66-a691ab4eda71", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:2b86b9c4-eedb-5284-91ab-3bbf446bd2c7", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f8c1a0ca-2cb9-527f-9491-87b2fdfce625", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:65c446d7-88b2-5ef1-a5ca-7a7b6e5d0adc", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:8685578b-e0c5-59c3-b842-b9d92bc0bf73", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0e38cc7-9846-50e0-82c2-d3ccf09e9817", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3b43c183-3221-5ac9-b52b-e24fe51f312d", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e1a790b-6f2a-56d4-b50b-b9f6cb41e56f", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0235d3e4-46ce-5752-ad0f-da40b1ee110e", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:4cf916b5-83b6-5578-8f33-49eb9e0cda71", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-pipes 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6e8c0357-fc05-5b41-818a-1c08b2ae2945", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:57a5b688-a895-5c7a-a2ac-53a2c71f6cf2", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c1b9f072-6eb1-52ac-bbc3-ecfd4de89243", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f5f0cd0b-e2c6-56ef-9b98-d3bffac28f98", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-pipes." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-pipes@2.9.4-tuxcare.3" } ] }