CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6809

Apache Tika before 1.14 allows Java code execution for serialized objects embedded in MATLAB files. The issue exists because Tika invokes JMatIO to do native deserialization.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.093

EPSS Ranking 92.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2016-6809

Apache » Nutch » Version: 2.3.1

cpe:2.3:a:apache:nutch:2.3.1
Apache » Tika » Version: 0.1

cpe:2.3:a:apache:tika:0.1
Apache » Tika » Version: 0.10

cpe:2.3:a:apache:tika:0.10
Apache » Tika » Version: 0.2

cpe:2.3:a:apache:tika:0.2
Apache » Tika » Version: 0.3

cpe:2.3:a:apache:tika:0.3
Apache » Tika » Version: 0.4

cpe:2.3:a:apache:tika:0.4
Apache » Tika » Version: 0.5

cpe:2.3:a:apache:tika:0.5
Apache » Tika » Version: 0.6

cpe:2.3:a:apache:tika:0.6
Apache » Tika » Version: 0.7

cpe:2.3:a:apache:tika:0.7
Apache » Tika » Version: 0.8

cpe:2.3:a:apache:tika:0.8
Apache » Tika » Version: 0.9

cpe:2.3:a:apache:tika:0.9
Apache » Tika » Version: 1.0

cpe:2.3:a:apache:tika:1.0
Apache » Tika » Version: 1.1

cpe:2.3:a:apache:tika:1.1
Apache » Tika » Version: 1.10

cpe:2.3:a:apache:tika:1.10
Apache » Tika » Version: 1.11

cpe:2.3:a:apache:tika:1.11
Apache » Tika » Version: 1.12

cpe:2.3:a:apache:tika:1.12
Apache » Tika » Version: 1.13

cpe:2.3:a:apache:tika:1.13
Apache » Tika » Version: 1.2

cpe:2.3:a:apache:tika:1.2
Apache » Tika » Version: 1.3

cpe:2.3:a:apache:tika:1.3
Apache » Tika » Version: 1.4

cpe:2.3:a:apache:tika:1.4
Apache » Tika » Version: 1.5

cpe:2.3:a:apache:tika:1.5
Apache » Tika » Version: 1.6

cpe:2.3:a:apache:tika:1.6
Apache » Tika » Version: 1.7

cpe:2.3:a:apache:tika:1.7
Apache » Tika » Version: 1.8

cpe:2.3:a:apache:tika:1.8
Apache » Tika » Version: 1.9

cpe:2.3:a:apache:tika:1.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6809

Products

Pricing

Contact Us