{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:4a6a5c72-3493-5db7-85c7-fd2bea173997", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2", "type": "library", "group": "org.apache.tika", "name": "tika-server", "version": "2.9.4-tuxcare.2", "purl": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:23eff01b-ffb6-51a9-aa92-7983e6f09cf1", "id": "CVE-2012-6612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2012-6612 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c7d42b09-23d3-575a-b882-63a46e8d1300", "id": "CVE-2013-6397", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6397 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f1294e07-9f10-56a2-8400-214cc7cd94e9", "id": "CVE-2013-6407", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6407 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:975d7c18-1bff-55a9-abd5-72b20925f974", "id": "CVE-2013-6408", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6408 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7892e53c-97a1-5ab1-b142-e3165a13eeed", "id": "CVE-2015-3414", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3414 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d1b9ab27-efee-51af-a2f9-87b3d0b1ddac", "id": "CVE-2015-3415", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3415 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:504a70f3-4a0b-5b46-ac74-8acc9154f2fa", "id": "CVE-2015-3416", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3416 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:6b9abdaa-5c7e-51e6-89e9-e2971a5ca118", "id": "CVE-2015-3717", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-3717 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a75c0ee1-e060-5888-9ceb-69d4f16cdb41", "id": "CVE-2015-5895", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-5895 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:87d445a5-4c43-5e84-bb5b-a6f3c61fe4f8", "id": "CVE-2015-6607", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-6607 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fcaeecf3-af9c-532d-94ce-6237c211360c", "id": "CVE-2015-8795", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8795 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2679c89e-1d33-59d1-97b7-9e36538ff9ed", "id": "CVE-2015-8796", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8796 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:749f1574-6af2-5803-b5cc-43d70821d95d", "id": "CVE-2015-8797", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2015-8797 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:dabd867c-2022-5e65-b97f-c799596fc6e8", "id": "CVE-2016-6153", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6153 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfa2b52d-eb25-572b-b48d-5411520a2182", "id": "CVE-2017-10989", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-10989 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e340f1df-c4af-53fd-9ea3-754e38d280bd", "id": "CVE-2017-3163", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3163 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:64be35b4-f9da-5ed6-bd4b-aa691ae3b416", "id": "CVE-2017-3164", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3164 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17811030-28ef-50c9-b47f-b1510e7fe981", "id": "CVE-2018-11802", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11802 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fbb9c6af-3d2f-50ed-9220-8d56ba50c8b0", "id": "CVE-2018-1308", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1308 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4a2e234f-3dbc-5635-863a-e9c63cad8fd8", "id": "CVE-2018-20346", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20346 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e0c34653-942b-52e4-b120-f5da2464c8cc", "id": "CVE-2018-20505", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20505 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d67e956a-1ef2-5201-a05b-f6168bdb50c8", "id": "CVE-2018-20506", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-20506 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f6894fc2-d156-535a-bd1d-44f6d63d03d3", "id": "CVE-2018-8740", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8740 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:151906a8-28c4-5c07-b770-64b2c20bab17", "id": "CVE-2019-0193", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0193 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:910d0f23-8f46-508a-aceb-31cce1b15c7b", "id": "CVE-2019-19645", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19645 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6ad8ffb-7e7a-5249-991d-f9ab66d3f2a8", "id": "CVE-2019-19646", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-19646 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:549b958f-e6b4-5faf-9533-7c81c09d4de5", "id": "CVE-2020-11655", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11655 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1539bf05-4692-5e08-91f9-62b5be746f11", "id": "CVE-2020-11656", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11656 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfdae31d-fcb9-50bb-9629-4887eb2a5833", "id": "CVE-2020-13434", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13434 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d4b2f634-7ae0-593b-9410-69c5d501fa18", "id": "CVE-2020-13435", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13435 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:f30e713a-7fe5-5360-b663-4a1b5963151b", "id": "CVE-2020-13630", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13630 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b2324f3a-d41a-5436-bb0c-7e2aa2d64065", "id": "CVE-2020-13631", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13631 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:74679a74-70a8-54ab-babc-708eabb84f1c", "id": "CVE-2020-13632", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13632 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:de90868f-7994-50d2-9e4f-a7bf83dff5f4", "id": "CVE-2020-13941", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13941 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a6a827f1-b6a5-5329-8104-78cecf0cdbfa", "id": "CVE-2020-13956", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-13956 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:5d586c44-8cf5-54b6-b942-223ae6a2550a", "id": "CVE-2020-15358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-15358 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98a44e66-4653-50fa-a789-5fd28a82341d", "id": "CVE-2021-27905", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-27905 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:23fcfde7-4f5f-5ba4-9327-517ce6863d63", "id": "CVE-2021-29262", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29262 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2d185fca-19b9-5326-82b2-990e9b6c383d", "id": "CVE-2021-29943", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-29943 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17b969a0-7e09-5a15-9875-6dd74fa00d9b", "id": "CVE-2021-44548", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-44548 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7c7761d1-fa32-568d-bde6-26f6711d51b5", "id": "CVE-2022-35737", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-35737 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:1576b02b-d278-50e3-bbb2-4cee2cd05e98", "id": "CVE-2023-34610", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2023-34610 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:85e8d805-59c9-5fbd-a4a8-b31515984d9e", "id": "CVE-2023-44487", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-44487 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a0732f7f-9fc9-5ab6-af82-ff173edd211f", "id": "CVE-2023-7104", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2023-7104 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ffe20be5-ca90-5f71-89e7-efd0b80c5bcf", "id": "CVE-2024-31141", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-31141 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4629bb48-cb00-52d6-a4d9-2b678148febd", "id": "CVE-2024-56128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-56128 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d3df8082-c977-5ca4-926d-6dcb3345eb89", "id": "CVE-2025-24814", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24814 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4eea9a60-a42f-5a89-b659-a9fad46400b9", "id": "CVE-2025-27818", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-27818 is a false positive for org.apache.tika:tika-server 2.9.4-tuxcare.2." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:18d7ea14-ba1d-503a-b65f-548c1ce55ac1", "id": "CVE-2025-27819", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27819 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8da484b8-9899-5b6c-a38b-e014be9039f4", "id": "CVE-2025-54988", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-54988 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bfa38c41-892d-565b-b5a1-838176f8b2a0", "id": "CVE-2025-66516", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-66516 is fixed in version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ddb9fc10-ff93-5ad3-999d-c171557b9e69", "id": "CVE-2025-6965", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-6965 affects version 2.9.4-tuxcare.2 of org.apache.tika:tika-server." }, "affects": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.tika/tika-server@2.9.4-tuxcare.2" } ] }