{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:082e3499-f45c-59e3-8a38-4cf06f9eeca7", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-shims-aggregator", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:281d3294-f111-5c45-a244-21310ce1b156", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a24d017c-1a53-5ad2-9069-e262455fd7d0", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1894985e-efd0-57fb-9d88-f8ce0271ce04", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:236ab729-ff47-53b6-b62b-7d4445c191f4", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d115af9-2839-5a58-ad36-95968b333e7c", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6dd01de5-febe-57b1-a5f2-b24b547de9f7", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d05ea691-5e9d-56ad-9931-7da9d374aea0", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4f44b1b1-a4ed-5740-8d15-1c86eeceec52", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f7ff8a77-ee80-5986-9eea-c40cad9718dd", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:18626578-0f30-570e-a868-3be4181bb0de", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims-aggregator." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-shims-aggregator@2.3.9.tuxcare.1" } ] }