{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:335a53fd-b6ba-512b-b010-96cbc463d0bd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-serde", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:25299d4b-bfc2-5dd6-a5eb-6e8d746e02ee", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:48bc266b-9175-568c-9586-e27b710d46ba", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:363f04bf-386d-5474-9a1e-2fda5cd30737", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:83e2f209-6453-5018-8cf6-2189190dd432", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:773deff5-8bca-5a9b-abea-5c22fb5c9bd0", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:815736ef-c582-5825-afe6-d579cf7f6ef3", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0fb9377e-c691-5e82-88ab-bff93c1b55da", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:37c0707b-2236-5ec9-b0c0-b0370b8955bb", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4a827c0c-e55f-5be9-87fa-c4e07c42f28e", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:62c459c1-bcd5-5cf5-aeb5-8eabc79e33d7", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9.tuxcare.1" } ] }