CVE-2022-25169 in Apache and Oracle Products
Published on May 16, 2022

Apache Tika BPGParser Memory Usage DoS

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.

NVD

Products Associated with CVE-2022-25169

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-25169 are published in these products:

Apache Tika

Oracle Primavera Unifier

Affected Versions

Apache Software Foundation Apache Tika:

Version Apache Tika, <= 1.28.1 is affected.

Exploit Probability

EPSS

0.31%

Percentile

54.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-25169 in Apache and Oracle ProductsPublished on May 16, 2022

Products Associated with CVE-2022-25169

Affected Versions

Exploit Probability

CVE-2022-25169 in Apache and Oracle Products
Published on May 16, 2022