{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:f342314e-85a3-5f92-b6e7-7069474eb770", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-server-client", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:00ee5d20-c45d-5675-9295-aad413945709", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:374cfe66-ed1e-5942-843f-aea17a8bac01", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c71868bf-da1a-5ae9-90d2-c06460651919", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:443a4622-fa4e-5b64-956b-37f17cd62621", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:877613fe-f104-5333-8119-f46602e9fd98", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:55512df0-3406-59c0-bdda-51bf4952bb6f", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:906544e0-35f7-5b90-b32a-20fd1b16bfa6", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:aa18e93f-4598-59d2-8e39-4025a48d88e0", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e28e3b3-8430-534f-9b0e-6148036a200f", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bce9ef5f-09ef-5ac2-b274-f57391a9b8aa", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:181cc8e8-a2de-581a-92ea-ef1158cadc6d", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6377de88-c37c-53b0-abce-d107a0978253", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0f08d8d8-8989-54b2-8a1e-548127df23be", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3087c2ea-d2e2-5d7b-a54d-f87524d8035b", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8341a05-025c-54ef-9742-d6804436c0fc", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:66e481ae-42d5-522b-9059-78709d373426", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f8e1954-13e6-5f49-a2a2-da15a0992292", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6d724f0-ea28-50bf-99c9-f5a8e614fab0", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff8162d3-cb10-5232-820a-41a8fd0a9b7b", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7fde3e1f-0c32-5eac-90da-d6c0e8b2c7a4", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d9634ac-d391-5d39-b0f9-fc1a9b2da86d", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b5705bd0-048a-5696-ad08-e88f19009858", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:208f1594-865d-500c-a45b-94e7113ed869", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:73ace15f-f9ef-5dcb-94c3-d0854f273d59", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0224187-8b80-5080-a3ca-7443b250ce84", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb68c3f8-dca1-52b9-b44a-a369f23cd9ef", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e75d477a-69d7-518c-9653-9a0cd5172d43", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:86283917-df7d-5a95-8996-333913f525b8", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3f716c9c-a8ba-5d35-96ef-d8453745ca17", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f06909b5-d0cf-5e04-a943-756361d25f07", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5db1931d-9455-5089-aab8-ffd5e4b4f1d6", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:88a77438-1357-5233-83d6-df063a4e5ce0", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd58ee84-9ec3-58e5-8fd5-67ca158b7983", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7fb3f52-04fc-5d6d-8c3c-c432d9dbd347", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0bd3773b-2177-5521-bf5b-901a74f6f048", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3aef0a62-362a-5b20-ae37-e21aeb79ab28", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3da9c511-dfa4-5eb6-a8b2-0c2d418a8c8d", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:70b47cad-1400-5a21-aa38-641103572ac2", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a86434c8-fa10-5902-8255-da5f6284e1bd", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c825b05e-720b-5ad7-84a1-ae7f3bc87b7d", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:37b89758-45c6-5b1a-9b5d-637e27e4e77d", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17acb5f5-cfbf-59f7-ba40-dde5d98edc2f", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcb62900-c08a-5abd-8449-431a22037324", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:96b073b5-0bb7-5158-bacc-413f471209d4", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2e5d8bb0-5a94-58b4-8879-f40bc597e96a", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:193dd2b8-6b6a-50de-93a8-a0332f8cb330", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d4a8cdf-ce81-50bf-bc59-23a5e3e74fd7", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fa207d21-9999-5d76-86c0-d019e52c5b96", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-server-client 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df170560-5551-59f4-86c0-4a7c77cce4b0", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a32c3474-9f8b-5a91-8919-512733e0c21d", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:59e021cd-b71b-512a-9517-2e16c7a44a97", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df9f5b44-721f-501e-a4f5-a0831affe083", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server-client." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-server-client@2.9.4-tuxcare.2" } ] }