Known vulnerabilities in Apache Foundation Apache Tika

Vendor: Apache Foundation
Website: https://www.apache.org
Total Security Bulletins: 15

Security bulletins (15)

Secuity bulletin Severity Status Published
SB2025082219: XXE in Apache Tika Medium
Patched Public exploit
22.08.2025
SB2022062801: Denial of service in Apache Tika Medium
Patched
28.06.2022
SB2022060114: Denial of service in Apache Tika Medium
Patched
01.06.2022
SB2022051837: Multiple vulnerabilities in Apache Tika Medium
Patched
18.05.2022
SB2021121346: Remote code execution in Apache Tika (Apache Log4j component) Critical
Patched Exploited
13.12.2021
SB2021033021: Denial of service in Apache Tika Medium
Patched
30.03.2021
SB2020042727: Memory leak in Apache Tika Medium
Patched
27.04.2020
SB2020033108: Multiple vulnerabilities in Apache Tika Medium
Patched
31.03.2020
SB2018122407: Denial of service in Apache Tika Low
Patched
24.12.2018
SB2018101101: Denial of service in Apache Tika Low
Patched
11.10.2018
SB2018092702: Denial of service in Apache Tika Medium
Patched
27.09.2018
SB2018042526: OS Command Injection in Apache Tika High
Patched Public exploit
25.04.2018
SB2018042529: Multiple vulnerabilities in Apache Tika Medium
Patched
25.04.2018
SB2017093007: XML External Entity injection in Apache Tika High
Patched
30.09.2017
SB2016121610: Information disclosure in Apache Tika Medium
Patched
16.12.2016