{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:9ed2071b-7adf-5a81-b939-d1e30ca15143", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-llap-ext-client", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:98f49bda-2337-5a3f-83c4-b58df38cda5d", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d7e4b02c-dbe7-526a-8ec0-8010a9d8e342", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:be1cfc2a-a208-5202-ab09-f565da7c25a3", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:7b56c2cd-c756-509d-9df5-1b0539121c71", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8ee780bd-7b1f-5339-b0bf-0e44b4de74d2", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1a16ccc6-52eb-57f7-b133-daf1e91f4d4d", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:131ef1e9-e3e5-5931-a63a-b1d6d539580d", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:2c47564f-449d-57a2-a9c1-3ae9868d2724", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b33b29af-b0f8-5dd9-8955-4a629a60bd58", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ffda5109-d43c-5eee-9825-79c42f327911", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9.tuxcare.1" } ] }