{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:1e0f81af-1d69-5d9b-aead-8444a9cb8672", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1", "type": "library", "group": "org.apache.hadoop", "name": "hadoop-datajoin", "version": "2.7.1.tuxcare.1", "purl": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:461c5f31-8e00-5f89-a9cc-82915c805e4e", "id": "CVE-2016-3086", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-3086 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1ab1f896-0bd5-57ff-abb8-77e864c643a8", "id": "CVE-2016-5001", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5001 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b9c944f7-8c63-5c80-901c-ef34a8b2a75e", "id": "CVE-2016-5393", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-5393 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1130e70b-80df-5041-a4a8-c91c539d3daa", "id": "CVE-2016-6811", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-6811 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f48d0e6a-fdb7-5b6a-8050-253ab498782e", "id": "CVE-2017-15713", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15713 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:16933ff2-c895-5f1a-bfbc-04c89cd13801", "id": "CVE-2017-15718", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-15718 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7e9411a9-d806-59b5-8283-0f5cee4e738c", "id": "CVE-2017-3166", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-3166 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:21e5c67e-81e7-59d3-8185-ae5c1e75b56e", "id": "CVE-2017-7669", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2017-7669 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:44abd478-5442-5331-ab2c-cfbd2bfc2d68", "id": "CVE-2018-11765", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11765 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:786231ee-47cc-54d8-a8ab-0b7796468fbc", "id": "CVE-2018-11766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11766 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:58d697d4-f437-59cf-8278-c13ab6144b96", "id": "CVE-2018-11768", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11768 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e107677b-59f4-56bf-a6b6-5dce19588d71", "id": "CVE-2018-1296", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-1296 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:232d1fff-9f65-57e5-9965-647aee5b90aa", "id": "CVE-2018-8009", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8009 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9c4b714c-36b3-5058-9291-10be210ae58d", "id": "CVE-2018-8029", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-8029 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:429d618e-71ea-5159-ad22-6fa94e9c2ccc", "id": "CVE-2020-9492", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-9492 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8f3fda63-bee6-590b-9a0c-16b84477991b", "id": "CVE-2021-25642", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-25642 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b0014d1f-8858-5663-8085-f2124ab0d45d", "id": "CVE-2021-33036", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-33036 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:43d9eaf0-7819-54b4-b5d2-23a63f075fe4", "id": "CVE-2021-37404", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-37404 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c4fa355a-b78c-595c-9ebe-3a22036447a9", "id": "CVE-2022-25168", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-25168 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89d89191-3ae1-533b-99cc-cb41adab0cc3", "id": "CVE-2022-26612", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-26612 affects version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6ffbeec0-4447-556b-a487-e008e452e8df", "id": "CVE-2024-23454", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-23454 is fixed in version 2.7.1.tuxcare.1 of org.apache.hadoop:hadoop-datajoin." }, "affects": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hadoop/hadoop-datajoin@2.7.1.tuxcare.1" } ] }