{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:369444d7-e9f4-5d6c-9dda-ec3aec4acb80", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-exec", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:fda94a34-f08c-52ff-943f-368768f3bee9", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:72aab508-83d3-56d0-b1b7-735519859227", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:51ad9858-0b0f-5ac6-b0c1-8c9c296fecad", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fb81435b-7eab-5bc2-a965-d58789f16a38", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f8d4bf05-fffa-51c0-95ab-98ce3697029e", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:50545324-b8d1-55ab-8782-4bd91aab33fd", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d969ae7-7a7b-5cd4-94cf-7b9ca553117b", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2adae56a-db77-5a3c-ac39-7c2c8934e17f", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:925efa0b-7c0d-5d05-bc41-aa2685655591", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f0ab0f29-a417-5794-abc1-ae42ce1b72d9", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-exec." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-exec@2.3.9.tuxcare.1" } ] }