{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6ed1ff10-a0cc-53e8-86c6-a4029795ad8d", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1", "type": "library", "group": "org.apache.hive", "name": "hive-shims", "version": "2.3.9.tuxcare.1", "purl": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:cbf40d64-07e8-5837-9fca-899fa912f384", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e035d542-f0d0-5373-801a-28d18a025a4e", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c5b35352-a8d8-58b1-9769-611bea17d98c", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:e00a6b5d-677a-55e2-9e45-4f1f0e263054", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:ceaada35-93c2-5dd9-a2ce-b1e3bfdbd4cb", "id": "CVE-2024-29869", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-29869 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:963f49e5-9fdb-5a6b-b828-e87cb7963c3e", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0778d196-cfb6-5e01-8c40-151daca65c18", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d07254eb-42a7-5257-880c-255fe07aceb8", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:d6089026-695d-5ca0-a8d4-e14d6dc2d031", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }, { "bom-ref": "urn:uuid:5a0f34fe-27cc-5cc2-95ea-de2c4fb4b505", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9.tuxcare.1 of org.apache.hive:hive-shims." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-shims@2.3.9.tuxcare.1" } ] }