{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:3cbd0181-03ef-5bc7-a76c-ef1cabc49ac6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2", "type": "library", "group": "org.apache.hive", "name": "hive-serde", "version": "2.3.9-tuxcare.2", "purl": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:a6360bc1-13f9-58f6-8144-9930b3d6829e", "id": "CVE-2020-13949", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2020-13949 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:999ffd1a-733a-5707-9d00-3c33bf9c8c3d", "id": "CVE-2021-34538", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2021-34538 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:fc12fdea-e8a5-5f6d-9216-4c0d442dc6de", "id": "CVE-2024-23945", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23945 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:cd2f70d7-e1d8-5bf0-bfdd-f7b6b2398b12", "id": "CVE-2024-23953", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-23953 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:c698dc9b-b9d2-5ce8-b4c5-865c2d51b529", "id": "CVE-2024-29869", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-29869 is fixed in version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:17809e87-abcd-5252-88fa-04c9e185b7f0", "id": "CVE-2024-45384", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45384 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:04999fbb-87af-5bd5-b085-6f35a8b0e465", "id": "CVE-2024-45537", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2024-45537 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:71015ca3-4414-5292-b83f-1fa7c3736d90", "id": "CVE-2025-27888", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-27888 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:565e2d84-42ff-5514-9979-60b8c6a4169a", "id": "CVE-2025-59390", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-59390 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }, { "bom-ref": "urn:uuid:98080ab8-ead8-54cd-9013-4037cda33a09", "id": "CVE-2026-23906", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2026-23906 affects version 2.3.9-tuxcare.2 of org.apache.hive:hive-serde." }, "affects": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.hive/hive-serde@2.3.9-tuxcare.2" } ] }