{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:278a2ae0-4381-5fc8-bfab-963ea5906b4a", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-llap-client", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:76278ae1-57fa-52a3-a0f1-4588bc52c236", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e421ef77-49c1-5cfd-80f0-0d37d5d4ef33", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:260f7eb4-3d8c-5bcf-a975-9fe34e5d6ea1", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ccf5cc57-c180-5c18-bf2b-3cd1f1070241", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:da273ead-a307-545e-a36a-cbe084e0a08e", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:a8ff9079-b451-5452-af1a-c457bc84cdda", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fdbeacda-d32a-542e-a2fb-1652fccd6134", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:2535b7e9-5838-55e8-918a-dc558fd1c5a7", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:ff5003ad-e397-57c3-a1c3-3add802ded15", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:24fd965b-5dba-5a86-bdb8-8be16a710943", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-client@2.3.9-tuxcare.2" } ] }