{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:6ba5bd54-975b-5dc5-a32b-47199caf60a4", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-hplsql", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:461cfab4-50ad-5319-9886-5af5b35e5ec0", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cc2e4552-341a-580a-afa5-f044a1c3d4c3", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d6e19995-8787-583d-95ff-b993f50a0ae4", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a44e1232-15fb-55ce-b22b-4bc72cf3f94c", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:bf358427-35ae-5204-8857-18cb7c36e263", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cb9e1d45-4f51-5640-ba9d-7d448dfd9912", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:77bc2874-e9f6-5704-b5d6-8c7274e743e8", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:9a0d98c7-966c-5027-a19b-7ceb155d40af", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:df18b397-a54d-54b1-8423-3dbe4452ef13", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:0c2e8025-bd25-5ee6-b098-2d85a2a74e24", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-hplsql." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-hplsql@2.3.9-tuxcare.2" } ] }