{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:03e095f7-b6c1-5413-82f3-82002fd9e81c", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3", "type": "library", "group": "org.apache.tika", "name": "tika-server-core", "version": "2.9.4-tuxcare.3", "purl": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:071a2584-b18b-5a6b-8519-feea8dee1ff0", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8ed7834-6cf5-55a9-84ca-77f32b7f4999", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6d16e180-1dbb-5eee-923b-21fe0d13eca1", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:be944ba7-c7e1-5e4f-b5d0-408344e6c4c2", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a8369eeb-84db-5691-82de-fb504db78ccc", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:26118d47-56af-5db9-bcf9-2994ab366e96", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e014f3d3-e9cb-5e05-a1b7-f80a77362935", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:872f21d4-9ee0-58b2-9b37-971a1b476cd6", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f2b6625b-ba60-5e2b-963a-e0abd06795a1", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:21582ae0-227c-5103-9fe9-2114eeae331b", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:d8ae61e5-321c-522b-b62d-33a73c043f45", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c91a95b2-fd3e-5ec8-9fbb-5a9db67083fa", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3cab1f6f-3fae-5ab7-bf2e-9687707f2c4e", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:3a4cb6fa-0ff9-584e-b8db-5bc0c03d1861", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6c230758-84c8-5726-9be6-577ee6d25a1b", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:43d67048-a118-56e8-8a6e-bb051533b9c5", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98add30f-bf58-5c24-bd21-7a220b39b8ab", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:18b2a380-09c5-50aa-b802-7b30c4be39c3", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:b97668c2-a3e9-5002-91e7-26d37b737f9e", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:24a25d15-9a24-5c29-b342-c082f5e7bb58", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:193716d4-a000-5d40-b1f0-c51d4f7caeb4", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:611523e1-afc3-5189-a83b-356eaa4dd78d", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:308e81f3-6736-5ba3-b78b-8e69050184fc", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:ded71ac4-11a1-5ab7-8eb8-8f533e95c6c4", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9818935b-b24d-5be8-bd9a-635058568713", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f72f8e54-cd2f-5128-b093-8dcb42984834", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7251eb4-c846-53a1-b627-439b0788e58d", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9752560b-fa78-5225-8d49-23011f4b59d3", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f918dd6d-c033-5b08-b0b7-49d95d42deaa", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6a75f480-c5cd-59bc-9c06-8284eba075d0", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:a23f3ad3-0bd3-5ffe-9434-4f36dad3a9b0", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:97fe3f5a-441a-5769-b8ff-01bec4bde596", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:385b018b-54ac-5040-b668-7ba7670d67e1", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:409126c7-19a1-52e5-a27d-968b7fb3a732", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:92827fa5-5e11-56e6-9b70-4b30eb261af6", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:5ea81b6a-6fe2-54d4-a7ac-08832660d3f6", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9e0e7ba3-196a-5c91-91b3-ca7193f83d37", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:aecbe6a3-79d4-5234-9606-1ca881d53ee8", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:f7393b0a-41cf-5df6-8233-26306d6d760b", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:6dde9fbe-3b8a-52ed-973c-9474d88f92c9", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:c0134390-b8d1-51c7-ade4-e2032cb262b3", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:e6b032d9-08ea-5307-8db9-0e4202035c19", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:9cb16ccb-a446-581d-a66f-78f7a8844026", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:70a7b6a9-3b5e-52f0-a223-a3bdf258b54b", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:077b6d82-9b72-55a0-9c00-e9ebfecb0661", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:74c1b818-5ecd-5448-b5ff-d974e237667b", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:fba191e2-fd0d-56fe-9154-cc162ed07de4", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:444f4933-89d1-5dc0-bbda-4894bda6196f", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-server-core 2.9.4-tuxcare.3." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:bac37a32-5811-5f8b-824f-1638a494376d", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:98eb7afb-b978-563d-8633-72e95a1da4e7", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:0c221e6c-c3e5-5790-af7c-e74b8e2725a0", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }, { "bom-ref": "urn:uuid:7503105d-2307-5e96-8e94-730cacf65cf7", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.3 of org.apache.tika:tika-server-core." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-server-core@2.9.4-tuxcare.3" } ] }