{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:f46403e7-10ff-5f66-9b16-13937f0f6546",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2",
      "type": "library",
      "group": "org.apache.hive.hcatalog",
      "name": "hive-webhcat-java-client",
      "version": "2.3.9-tuxcare.2",
      "purl": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:e09f423b-a5c1-5be1-8508-852821343cc1",
      "id": "CVE-2020-13949",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:37b5746a-526c-57d6-98cb-09cf93eb1ac0",
      "id": "CVE-2021-34538",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d66fa17a-62be-5f4e-8045-72443a6052d0",
      "id": "CVE-2024-23945",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:24fb9840-f10c-55b3-a121-700075b118e9",
      "id": "CVE-2024-23953",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:23456946-0970-5f69-a81f-87a62449b853",
      "id": "CVE-2024-29869",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c29c4273-22d4-54b1-b77d-e8af17aaa9c0",
      "id": "CVE-2024-45384",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:0f3dd80f-691d-5042-81b9-e1e582d72bc8",
      "id": "CVE-2024-45537",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:fbf2927f-019b-5514-b5e0-5124903c64a5",
      "id": "CVE-2025-27888",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5b6b5c25-94ed-5ab9-92dc-fece7cb315ce",
      "id": "CVE-2025-59390",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:12280415-24cf-5a2b-95f4-5c9e9158b8ce",
      "id": "CVE-2026-23906",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive.hcatalog:hive-webhcat-java-client."
      },
      "affects": [
        {
          "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:maven/org.apache.hive.hcatalog/hive-webhcat-java-client@2.3.9-tuxcare.2"
    }
  ]
}