Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/13070?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13070?format=api", "vulnerability_id": "VCID-jq4c-tghp-s3c8", "summary": "Missing Authorization\nThe Hive `EXPLAIN` operation does not check for necessary authorization of involved entities in a query. An unauthorized user can do `EXPLAIN` on arbitrary table or view and expose table metadata and statistics.", "aliases": [ { "alias": "CVE-2018-1314" }, { "alias": "GHSA-jmf4-pq78-f8vj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/55970?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.3.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/55971?format=api", "purl": "pkg:maven/org.apache.hive/hive@3.1.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@3.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/56044?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.3.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/56045?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@3.1.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@3.1.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/74110?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/74111?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52609?format=api", "purl": "pkg:maven/org.apache.hive/hive@0.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kff1-smtt-7fcc" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@0.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52610?format=api", "purl": "pkg:maven/org.apache.hive/hive@0.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@0.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52611?format=api", "purl": "pkg:maven/org.apache.hive/hive@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52612?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-wqmh-rnxy-k3d1" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52613?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52614?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-wqmh-rnxy-k3d1" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52615?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52616?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52617?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" }, { "vulnerability": "VCID-w841-het6-ubhj" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52618?format=api", "purl": "pkg:maven/org.apache.hive/hive@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/53584?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53585?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/53586?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53587?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53588?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/54287?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-kwsx-3cxw-8uaa" }, { "vulnerability": "VCID-w6dq-9zaa-ykhb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/54288?format=api", "purl": "pkg:maven/org.apache.hive/hive@2.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@2.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/55968?format=api", "purl": "pkg:maven/org.apache.hive/hive@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/55969?format=api", "purl": "pkg:maven/org.apache.hive/hive@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12xd-nb8g-23gc" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111438?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111439?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/111440?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111441?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111442?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111443?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52599?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52600?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52601?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52602?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52603?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52604?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52605?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52606?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/52607?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" }, { "vulnerability": "VCID-xf72-ztd4-8kgd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52608?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/111444?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/111445?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/53590?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53591?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/53592?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53593?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bhp4-12yw-bqdn" }, { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/53594?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/54295?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-gqah-8x44-a3c9" }, { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/54296?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@2.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@2.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/56043?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/127612?format=api", "purl": "pkg:maven/org.apache.hive/hive-jdbc@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jq4c-tghp-s3c8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hive/hive-jdbc@3.1.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1314", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59365", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-1314" }, { "reference_url": "https://lists.apache.org/thread.html/3da47dbcbf09697387f29d2f1aed970523b6b334d93afd3cced23727@%3Cdev.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/3da47dbcbf09697387f29d2f1aed970523b6b334d93afd3cced23727@%3Cdev.hive.apache.org%3E" }, { "reference_url": "http://www.securityfocus.com/bid/105884", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/105884" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1314", "reference_id": "CVE-2018-1314", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1314" }, { "reference_url": "https://github.com/advisories/GHSA-jmf4-pq78-f8vj", "reference_id": "GHSA-jmf4-pq78-f8vj", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jmf4-pq78-f8vj" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 862, "name": "Missing Authorization", "description": "The product does not perform an authorization check when an actor attempts to access a resource or perform an action." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jq4c-tghp-s3c8" }