{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:c31cbec5-d19b-510f-a83f-f13dba5eb3f6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive.hcatalog", "name": "hive-webhcat", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cf50ab53-90c8-5213-a301-b280dc1aa334", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b26df28c-de1e-5996-8bd4-f77aa3954ce0", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6be6204e-1641-5f20-9e3e-af97561b56cc", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d9ec418d-261f-529f-8dba-15f705b92791", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5ec844c9-ba58-513d-99de-35ddc67908e3", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e3c6bca2-5c56-56bf-88cc-6e260ec461d4", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d319bc40-3e4f-5e32-8249-b558131fc558", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c2bece9a-c692-5ad9-ab39-980462c5fcdc", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:553292e5-ee0a-56a9-8f9e-43cfa4793a60", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c22ef1e5-e6fd-5d54-b6a7-5707256566cc", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive.hcatalog:hive-webhcat." }, "affects": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat@2.3.9.tuxcare.1" } ] }