CVE-2016-6809

CRITICAL

Apache Tika < 1.14 - Remote Code Execution via MATLAB File Deserialization

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2016-6809. PoCs published by dawetmaster, andikahilmy.

AI-analyzed exploit summary This repository appears to be a partial or incomplete snapshot of the Apache Tika project, specifically targeting CVE-2016-6809. It lacks exploit code or a detailed analysis of the vulnerability, instead containing only a subset of source files and a generic README.

Description

Apache Tika before 1.14 allows Java code execution for serialized objects embedded in MATLAB files. The issue exists because Tika invokes JMatIO to do native deserialization.

Exploits (2)

nomisec STUB

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2016-6809-tika-vulnerable

View Code ZIP pw:eip

This repository appears to be a partial or incomplete snapshot of the Apache Tika project, specifically targeting CVE-2016-6809. It lacks exploit code or a detailed analysis of the vulnerability, instead containing only a subset of source files and a generic README.

Classification

Stub 90%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: Apache Tika

No auth needed

Prerequisites: None identified

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Mar 14, 2026 Full analysis →

nomisec STUB

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2016-6809-tika-vulnerable

View Code ZIP pw:eip

This repository contains a snapshot of Apache Tika source code but lacks any exploit code or technical analysis related to CVE-2016-6809. It appears to be a partial clone of the Tika project without PoC or vulnerability details.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache Tika

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →