{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:ad06cbcb-18cc-54d5-b644-022163767996", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-llap-client", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e832a68f-1443-5675-87db-bc1d41f532c6", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89353e16-1d80-5ba6-9b2f-42d8a419ebfc", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c478939-ff5d-5eb7-95ff-d4d642a3254c", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80839fce-ceb5-59fa-8063-f79d027f412d", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:98b31d41-94e0-535c-92ae-ad931f288119", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a38d79f2-5453-54be-bfda-1240c2793f52", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3da5cf55-e41d-5b7e-8c50-857bc1875e70", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:45691136-3552-5b58-a635-efdd0106ef40", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8b7a5002-5922-5eba-bdf2-929a7e80a4fe", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fd8e588c-5aeb-5818-bd03-86ff9679eace", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9.tuxcare.1" } ] }