/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-8687-7wgj-97ch

Published

Last updated

https://images.chainguard.dev/security/CGA-8687-7wgj-97ch
Package

apache-tika-2.9

Repository

Chainguard

Latest Update
Fix not planned
Aliases
  • CVE-2025-54988
  • GHSA-p72g-pv48-7w9x

Severity

8.4

High

CVSS V3

References

  • https://nvd.nist.gov/vuln/detail/CVE-2025-54988
  • https://github.com/advisories/GHSA-p72g-pv48-7w9x

Updates

Status

Fix not planned

Impact

Apache Tika 2.9.4 is the final release for the 2.x versions and this package is EOL as of April 2025. Recommend upgrading to latest 3.x release. Reference: https://tika.apache.org/

Status

Under investigation

Status

Fixed

Fixed version

2.9.4-r4

Status

Under investigation

Safe Source for Open Source™
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing

Solutions

FedRAMPPCI DSSGolden ImagesCVE RemediationPublic Sector

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsChainguard CoursesDocumentationTrust Center

Company

About UsBlogPartnersNewsroomCareersLegal