{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:e88175c6-6f3b-580e-b000-283635aac446", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-llap-common", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:c18d78e5-050b-5f77-9118-a930aa2cddc9", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5e5e9f32-4cea-5e9d-b52a-82967db303ac", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e85b8eca-a16b-5dd4-b79b-a93684b94597", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:507df5c4-2ba2-5d7f-925a-aff8b9b3b138", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:dc6a8639-6ad1-5720-992e-d780bc5afee9", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:970187db-9e92-51f9-908d-12a1d22a40a6", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8eeb1aa8-f5ac-5f12-8680-ee18dd6b2caa", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5643972b-48b0-55d1-a24e-d52abf231066", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b272c047-ccbd-5669-b98a-ec738de62c76", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30ac1570-dee0-58bb-a52d-a8efe83d805a", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-common." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-common@2.3.9.tuxcare.1" } ] }