CVE-2022-25169 in Apache and Oracle Products
Published on May 16, 2022

Apache Tika BPGParser Memory Usage DoS

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.

NVD

Products Associated with CVE-2022-25169

stack.watch emails you whenever new vulnerabilities are published in Apache Tika or Oracle Primavera Unifier. Just hit a watch button to start following.

Apache Tika

Oracle Primavera Unifier

Affected Versions

Apache Software Foundation Apache Tika:

Version Apache Tika, <= 1.28.1 is affected.

Exploit Probability

EPSS

0.31%

Percentile

54.45%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-25169 in Apache and Oracle ProductsPublished on May 16, 2022

Products Associated with CVE-2022-25169

Affected Versions

Exploit Probability

CVE-2022-25169 in Apache and Oracle Products
Published on May 16, 2022