SecurityWeek

Atlassian Patches Critical Apache Tika Flaw

Atlassian has released updates for Bamboo, Bitbucket, Confluence, Crowd, Fisheye/Crucible, and Jira to patch 29 ...
CSO Online

Apache Tika hit by critical vulnerability thought to be patched months ago

CVE-2025-54988 is a weakness in the tika-parser-pdf-module used to process PDFs in Apache Tika from version 1.13 to and ...

Apache warns of 10.0-rated flaw in Tika metadata ingestion tool

Tika detects and extracts metadata from over 1,000 different file formats. Last August, Apache reported CVE-2025-54988, an 8.4 rated flaw that it warned allows an attacker to carry out XML External ...
Dark Reading

Apache Issues Max-Severity Tika CVE After Patch Miss

The Apache Software Foundation (ASF) has issued a new CVE identifier for a critical security flaw in Apache Tika because its original vulnerability disclosure failed to capture the full extent of ...