{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:476303c1-fc21-57fd-b972-48885ee7fede", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-contrib", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:6c4840a3-4e8a-553f-99d2-e9af94d39b6f", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a7a86bc9-9385-5465-a447-ae37ffa17db0", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:275a5738-002f-50f2-a720-0f81e50ac978", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0ea29256-d178-5253-8c4f-f27ce6d827a3", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3949bfb6-9066-53a5-92e2-bec1a808fe88", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:b8c56852-0ddf-599d-a07e-337555974be9", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9e8c946c-e84e-5669-9781-8e2e0069823d", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:7e61a63a-f4d4-5ff3-96a8-3833de66bc4a", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eca5aca9-986d-59b7-8ec5-3ee40f880e88", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:54c06142-954b-51e1-9b03-a50fd81488c7", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-contrib." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-contrib@2.3.9-tuxcare.2" } ] }