org.apache.tika:tika-parsers@1.16 vulnerabilities
-
latest version
2.9.2
-
latest non vulnerable version
-
first published
15 years ago
-
latest version published
a month ago
-
licenses detected
- [0.4,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.tika:tika-parsers package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS) via the How to fix Denial of Service (DoS)? Upgrade |
[,1.26)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted or corrupt file may trigger a System.exit in Tika's How to fix Denial of Service (DoS)? Upgrade |
[,1.24.1)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted or corrupt PSD file can cause excessive memory usage in the How to fix Denial of Service (DoS)? Upgrade |
[1.0,1.24)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted or corrupt PSD file can cause an infinite loop in the How to fix Denial of Service (DoS)? Upgrade |
[1.0,1.24)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS) attacks. An sqlite file that is carefully crafted or corrupted can cause an infinite loop in Apache Tika's SQLite3Parser. How to fix Denial of Service (DoS)? Upgrade |
[1.8,1.20)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to XML External Entity (XXE) Injection. The XML parsers were not configured to limit entity expansion. How to fix XML External Entity (XXE) Injection? Upgrade |
[1.0,1.19)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted file can trigger an infinite loop in the How to fix Denial of Service (DoS)? Upgrade |
[1.2,1.19)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS) attacks. A carefully crafted (or fuzzed) file can trigger an infinite loop via the How to fix Denial of Service (DoS)? Upgrade |
[,1.18)
|
org.apache.tika:tika-parsers is a toolkit for detecting and extracting metadata and structured text content from various documents using existing parser libraries. Affected versions of this package are vulnerable to Denial of Service (DoS)
via a carefully crafted (or fuzzed) file can trigger an infinite loop via the How to fix Denial of Service (DoS)? Upgrade |
[,1.18)
|