hive vulnerabilities

Known vulnerabilities in the hive package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L GHSA-58qw-p7qm-5rvh	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
H CVE-2023-32731	<4.0.1-r1
L GHSA-h4rc-386g-6m85	<4.0.1-r1
L GHSA-f9hv-mg5h-xcw9	<4.0.1-r1
L GHSA-4h8f-2wvx-gg5w	<4.0.1-r1
C Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-8xfc-gm6g-vgpv	<4.0.1-r1
H Improper Initialization	<4.0.1-r1
L GHSA-27xj-rqx5-2255	<4.0.1-r1
L CVE-2024-34447	<4.0.1-r1
L GHSA-6wqp-v4v6-c87c	<4.0.1-r1
L GHSA-758m-v56v-grj4	<4.0.1-r1
L GHSA-gvpg-vgmx-xg6w	<4.0.1-r1
M CVE-2023-32732	<4.0.1-r1
L GHSA-cj7v-27pg-wf7q	<4.0.1-r1
H CVE-2023-52428	<4.0.1-r1
M Information Exposure	<4.0.1-r1
L GHSA-5p34-5m6p-p58g	<4.0.1-r1
H Reachable Assertion	<4.0.1-r1
L GHSA-cgwf-w82q-5jrr	<4.0.1-r1
L GHSA-9vvp-fxw6-jcxr	<4.0.1-r1
L GHSA-9hxf-ppjv-w6rq	<4.0.1-r1
L CVE-2024-30171	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-288c-cq4h-88gq	<4.0.1-r1
L GHSA-6628-q6j9-w8vg	<4.0.1-r1
L GHSA-c265-37vj-cwcc	<4.0.1-r1
L GHSA-7r82-7xv7-xcpj	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
C Deserialization of Untrusted Data	<4.0.1-r1
H CVE-2020-10672	<4.0.1-r1
M Allocation of Resources Without Limits or Throttling	<4.0.1-r1
C Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-mc6h-4qgp-37qh	<4.0.1-r1
C Server-Side Request Forgery (SSRF)	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L CVE-2024-30172	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
C Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-mx9v-gmh4-mgqw	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
C Deserialization of Untrusted Data	<4.0.1-r1
M Information Exposure	<4.0.1-r1
L GHSA-qw69-rqj8-6qw8	<4.0.1-r1
L GHSA-9mxf-g3x6-wv74	<4.0.1-r1
M Improper Handling of Length Parameter Inconsistency	<4.0.1-r1
L Improper Input Validation	<4.0.1-r1
L GHSA-p26g-97m4-6q7c	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L Information Exposure	<4.0.1-r1
L GHSA-r978-9m6m-6gm6	<4.0.1-r1
L GHSA-cfgp-2977-2fmm	<4.0.1-r1
L GHSA-v435-xc8x-wvr9	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-3j6g-hxx5-3q26	<4.0.1-r1
L GHSA-4265-ccf5-phj5	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L GHSA-95cm-88f5-f2c7	<4.0.1-r1
H Deserialization of Untrusted Data	<4.0.1-r1
L CVE-2024-29857	<4.0.1-r1
L GHSA-4g9r-vxhx-9pgx	<4.0.1-r1
L GHSA-x2w5-5m2g-7h5m	<4.0.1-r1
L GHSA-v3xw-c963-f5hc	<4.0.1-r1
M CVE-2020-13956	<4.0.1-r1
L GHSA-c2q3-4qrh-fm48	<4.0.1-r1
L GHSA-rf6r-2c4q-2vwg	<4.0.1-r1
M Resource Exhaustion	<4.0.1-r1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<4.0.1-r1
L GHSA-w7f5-jrpr-5c2m	<4.0.1-r1
L GHSA-j823-4qch-3rgm	<4.0.1-r1
H XML External Entity (XXE) Injection	<4.0.1-r1
L GHSA-qmqc-x3r4-6v39	<4.0.1-r1
L GHSA-hmr7-m48g-48f6	<4.0.1-r1
L GHSA-m44j-cfrm-g8qc	<4.0.1-r1
L GHSA-58pp-9c76-5625	<4.0.1-r1
M CVE-2023-42503	<4.0.1-r1

Vulnerability

Vulnerable Version

GHSA-58qw-p7qm-5rvh

<4.0.1-r1

Deserialization of Untrusted Data

<4.0.1-r1

CVE-2023-32731

<4.0.1-r1

GHSA-h4rc-386g-6m85

<4.0.1-r1

GHSA-f9hv-mg5h-xcw9

<4.0.1-r1