{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5aa916fe-5b89-5a67-a027-98769b239bc3", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-llap-ext-client", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:0671e5b3-581c-5962-afac-07a5a48e3ec0", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eb7f3acd-bcf2-58f0-a589-4ff4b6bf7c6f", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:e59c235b-0a87-58e6-be06-6a2e1190febf", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:3798224a-490a-5458-ab2b-4d22e59e00d7", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:82105160-aed4-527d-b23e-01460ace7966", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:d38c4bb0-538e-5223-82a8-e2123d8a4e25", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:edd1b222-5cff-5172-be15-d5d7268dccc6", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:4d9ac59d-3481-58fd-9f00-34f1723beef7", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:8b183558-3c5b-557b-861e-dd7397a7b26b", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:eaa0f03e-8ffb-5e84-adea-77bcde7d731d", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-llap-ext-client." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-llap-ext-client@2.3.9-tuxcare.2" } ] }