Update Apache Tika components to version 3.2.2 or higher, or apply vendor-specific fixes (e.g., Bluemind version 5.3.12 or superior).
This vulnerability allows an attacker to carry out XML External Entity injection via a crafted XFA file inside a PDF, affecting Apache Tika's PDF parser module. 54988.rar
CVE-2025-54988 (Critical XXE in Apache Tika tika-core/tika-parsers). Update Apache Tika components to version 3
If you were looking for a different ".rar" file, please provide more context. BlueMind v5.0.8 - CVEs or apply vendor-specific fixes (e.g.