pkg:Maven/org.apache.tika:tika-core

All known vulnerabilities

• CRITICAL9.8CVE-2025-66516Apache Tika has XXE vulnerability
  >= 1.13, < 3.2.2
• CRITICAL9.8CVE-2016-6809Apache Tika allows Java code execution for serialized objects embedded in MATLAB files
  from 0, < 1.14
• HIGH8.8CVE-2019-10088Allocation of Resources Without Limits or Throttling in Apache Tika
  >= 1.7, < 1.22
• HIGH8.1Command injection in org.apache.tika:tika-core
  >= 1.7, < 1.18
• HIGH7.8Allocation of Resources Without Limits or Throttling in Apache Tika
  >= 1.7, < 1.22
• HIGH7.8Apache Tika does not properly initialize the XML parser or choose handlers
  from 0, < 1.13
• HIGH7.5High severity vulnerability that affects org.apache.tika:tika-core
  >= 0.1, < 1.19.1
• HIGH7.5Apache Tika is vulnerable to entity expansions which can lead to a denial of service attack
  >= 0.1, < 1.19.1
• MEDIUM5.9Moderate severity vulnerability that affects org.apache.tika:tika-core
  >= 0.9, < 1.19
• MEDIUM5.5Regular expression denial of service in apache tika
  >= 1.17, < 1.28.3
• MEDIUM5.5Regular expression denial of service in apache tika
  >= 1.17, < 1.28.2
• MEDIUM5.5Moderate severity vulnerability that affects org.apache.tika:tika-core
  from 0, < 1.18
• MEDIUM5.5Comparison errorr in org.apache.tika:tika-core
  >= 1.2, < 1.19