Search for packages
| purl | pkg:maven/org.apache.tika/tika-server@1.26 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8qc9-3mxe-8ydp
Aliases: CVE-2022-33879 GHSA-6q8v-2hvm-fx37 |
The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zj8z-ja31-mkcr
Aliases: CVE-2022-30973 GHSA-qw3f-w4pf-jh5f |
tika-core: incomplete fix for CVE-2022-30126 |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-42ad-sh45-7fev | Loop with Unreachable Exit Condition (Infinite Loop) A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser |
CVE-2021-28657
GHSA-567x-m4wm-87v8 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-06T02:39:19.682163+00:00 | GitLab Importer | Affected by | VCID-8qc9-3mxe-8ydp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-server/CVE-2022-33879.yml | 38.6.0 |
| 2026-06-06T02:34:36.675411+00:00 | GitLab Importer | Affected by | VCID-zj8z-ja31-mkcr | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-server/CVE-2022-30973.yml | 38.6.0 |
| 2026-06-04T16:20:58.927504+00:00 | GitLab Importer | Fixing | VCID-42ad-sh45-7fev | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-server/CVE-2021-28657.yml | 38.6.0 |