Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.tika/tika-parser-image-module@2.4.0
purl pkg:maven/org.apache.tika/tika-parser-image-module@2.4.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-eu4h-uqdw-n7ez Allocation of Resources Without Limits or Throttling The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files. CVE-2022-25169

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:43:37.198528+00:00 GitLab Importer Fixing VCID-eu4h-uqdw-n7ez https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-parser-image-module/CVE-2022-25169.yml 38.6.0