Org.apache.tika:tika
This hub aggregates every CVE we track for Org.apache.tika:tika, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
0
Critical
0
High
0
In CISA KEV
Severity distribution
MEDIUM5LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 6 most recently published vulnerabilities affecting Org.apache.tika:tika.
- CVE-2022-33879Incomplete fix and new regex DoS in StandardsExtractingContentHandler3.3
- CVE-2022-25169Apache Tika BPGParser Memory Usage DoS5.5
- CVE-2021-28657Infinite loop in Apache Tika's MP3 parser5.5
- CVE-2020-9489A carefully crafted or corrupt file may trigger a System.exit in Tika's OneNote Parser. Crafted or corrupted files can also cause out of memory errors and/or infinite loops in Tika's ICNSParser, MP...5.5
- CVE-2020-1951A carefully crafted or corrupt PSD file can cause an infinite loop in Apache Tika's PSDParser in versions 1.0-1.23.5.5
- CVE-2020-1950A carefully crafted or corrupt PSD file can cause excessive memory usage in Apache Tika's PSDParser in versions 1.0-1.23.5.5
Product normalization is registry-driven with AI assist and human review. How it works