Vulnerabilities > Apache > Tika > High

DATE CVE VULNERABILITY TITLE RISK
2021-06-16 CVE-2021-33813 XXE vulnerability in multiple products
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
network
low complexity
jdom apache debian fedoraproject oracle CWE-611
7.5
2019-08-02 CVE-2019-10094 Allocation of Resources Without Limits or Throttling vulnerability in Apache Tika
A carefully crafted package/compressed file that, when unzipped/uncompressed yields the same file (a quine), causes a StackOverflowError in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21.
local
low complexity
apache CWE-770
7.8
2019-08-02 CVE-2019-10088 Allocation of Resources Without Limits or Throttling vulnerability in Apache Tika
A carefully crafted or corrupt zip file can cause an OOM in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21.
network
low complexity
apache CWE-770
8.8
2018-10-09 CVE-2018-11796 XXE vulnerability in Apache Tika
In Apache Tika 1.19 (CVE-2018-11761), we added an entity expansion limit for XML parsing.
network
low complexity
apache CWE-611
7.5
2018-09-19 CVE-2018-11761 XXE vulnerability in multiple products
In Apache Tika 0.1 to 1.18, the XML parsers were not configured to limit entity expansion.
network
low complexity
apache oracle CWE-611
7.5
2018-04-25 CVE-2018-1335 Unspecified vulnerability in Apache Tika
From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server.
network
high complexity
apache
8.1
2017-09-30 CVE-2016-4434 XXE vulnerability in Apache Tika 1.12
Apache Tika before 1.13 does not properly initialize the XML parser or choose handlers, which might allow remote attackers to conduct XML External Entity (XXE) attacks via vectors involving (1) spreadsheets in OOXML files and (2) XMP metadata in PDF and other file formats, a related issue to CVE-2016-2175.
local
low complexity
apache CWE-611
7.8