pkg:maven/org.apache.tika/tika-core

Type maven

Namespace org.apache.tika

Name tika-core

Known advisories, vulnerabilities and fixes for org.apache.tika/tika-core package.

Repository: https://mvnrepository.com/artifact/org.apache.tika/tika-core

Critical 1

High 6

Moderate 4

Type	Version	# CVEs	# Advisory ID	Title	Severity	Published
Affected	< 1.13	CVE-2016-4434	MAVEN:GHSA-4XR4-4C65-HJ7F	Apache Tika does not properly initialize the XML parser or choose handlers	high	2018-10-17T15:44:22 (6 years ago)
Fixed	= 1.13	CVE-2016-4434	MAVEN:GHSA-4XR4-4C65-HJ7F	Apache Tika does not properly initialize the XML parser or choose handlers	high	2018-10-17T15:44:22 (6 years ago)
Affected	< 1.18	CVE-2018-1338	MAVEN:GHSA-5MF7-26MW-3RQR	Moderate severity vulnerability that affects org.apache.tika:tika-core	moderate	2018-10-17T15:50:45 (6 years ago)
Fixed	= 1.18	CVE-2018-1338	MAVEN:GHSA-5MF7-26MW-3RQR	Moderate severity vulnerability that affects org.apache.tika:tika-core	moderate	2018-10-17T15:50:45 (6 years ago)
Affected	>= 0.1, < 1.19.1	CVE-2018-11761	MAVEN:GHSA-6JQ2-789Q-FFF2	High severity vulnerability that affects org.apache.tika:tika-core	high	2018-10-17T15:49:36 (6 years ago)
Fixed	= 1.19.1	CVE-2018-11761	MAVEN:GHSA-6JQ2-789Q-FFF2	High severity vulnerability that affects org.apache.tika:tika-core	high	2018-10-17T15:49:36 (6 years ago)
Affected	>= 1.7, < 1.18	CVE-2018-1335	MAVEN:GHSA-9R24-GP44-H3PM	Command injection in org.apache.tika:tika-core	high	2018-10-17T15:43:43 (6 years ago)
Fixed	= 1.18	CVE-2018-1335	MAVEN:GHSA-9R24-GP44-H3PM	Command injection in org.apache.tika:tika-core	high	2018-10-17T15:43:43 (6 years ago)
Affected	>= 0.1, < 1.19.1	CVE-2018-11796	MAVEN:GHSA-H8Q5-G2CJ-QR5H	Apache Tika is vulnerable to entity expansions which can lead to a denial of service attack	high	2018-10-17T15:43:25 (6 years ago)
Fixed	= 1.19.1	CVE-2018-11796	MAVEN:GHSA-H8Q5-G2CJ-QR5H	Apache Tika is vulnerable to entity expansions which can lead to a denial of service attack	high	2018-10-17T15:43:25 (6 years ago)
Affected	>= 1.2, < 1.19	CVE-2018-8017	MAVEN:GHSA-J53J-GMR9-H8G3	Comparison errorr in org.apache.tika:tika-core	moderate	2018-10-17T15:50:31 (6 years ago)
Fixed	= 1.19	CVE-2018-8017	MAVEN:GHSA-J53J-GMR9-H8G3	Comparison errorr in org.apache.tika:tika-core	moderate	2018-10-17T15:50:31 (6 years ago)
Affected	< 1.14	CVE-2016-6809	MAVEN:GHSA-J8G6-2WH7-6439	Apache Tika allows Java code execution for serialized objects embedded in MATLAB files	critical	2018-10-17T15:44:36 (6 years ago)
Fixed	= 1.14	CVE-2016-6809	MAVEN:GHSA-J8G6-2WH7-6439	Apache Tika allows Java code execution for serialized objects embedded in MATLAB files	critical	2018-10-17T15:44:36 (6 years ago)
Affected	>= 1.7, < 1.22	CVE-2019-10088	MAVEN:GHSA-MFWH-GQX8-C787	Allocation of Resources Without Limits or Throttling in Apache Tika	high	2019-08-06T01:43:40 (5 years ago)
Fixed	= 1.22	CVE-2019-10088	MAVEN:GHSA-MFWH-GQX8-C787	Allocation of Resources Without Limits or Throttling in Apache Tika	high	2019-08-06T01:43:40 (5 years ago)
Affected	>= 1.7, < 1.22	CVE-2019-10094	MAVEN:GHSA-MM7M-XG4H-6M52	Allocation of Resources Without Limits or Throttling in Apache Tika	high	2019-08-06T01:43:35 (5 years ago)
Fixed	= 1.22	CVE-2019-10094	MAVEN:GHSA-MM7M-XG4H-6M52	Allocation of Resources Without Limits or Throttling in Apache Tika	high	2019-08-06T01:43:35 (5 years ago)
Affected	>= 1.17, < 1.28.3	CVE-2022-30973	MAVEN:GHSA-QW3F-W4PF-JH5F	Regular expression denial of service in apache tika	moderate	2022-06-01T00:00:36 (2 years ago)
Fixed	= 1.28.3	CVE-2022-30973	MAVEN:GHSA-QW3F-W4PF-JH5F	Regular expression denial of service in apache tika	moderate	2022-06-01T00:00:36 (2 years ago)
Affected	>= 0.9, < 1.19	CVE-2018-11762	MAVEN:GHSA-W6G3-V46Q-5P28	Moderate severity vulnerability that affects org.apache.tika:tika-core	moderate	2018-10-17T15:49:58 (6 years ago)
Fixed	= 1.19	CVE-2018-11762	MAVEN:GHSA-W6G3-V46Q-5P28	Moderate severity vulnerability that affects org.apache.tika:tika-core	moderate	2018-10-17T15:49:58 (6 years ago)