{"id":"CLEANSTART-2026-SQ91016","summary":"Security fixes for CVE-2018-10237, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-2047, CVE-2022-3171, CVE-2022-3509, CVE-2022-3510, CVE-2022-36364, CVE-2022-41881, CVE-2023-20861, CVE-2023-20863, CVE-2023-26048, CVE-2023-26049, CVE-2023-2976, CVE-2023-34462, CVE-2023-36479, CVE-2023-40167, CVE-2023-41900, CVE-2023-42503, CVE-2023-44981, CVE-2024-13009, CVE-2024-23454, CVE-2024-23944, CVE-2024-25710, CVE-2024-26308, CVE-2024-29131, CVE-2024-29133, CVE-2024-38808, CVE-2024-38820, CVE-2024-38827, CVE-2024-47554, CVE-2024-47561, CVE-2024-52046, CVE-2024-6763, CVE-2024-7254, CVE-2024-8184, CVE-2025-11143, CVE-2025-22233, CVE-2025-24970, CVE-2025-25193, CVE-2025-27821, CVE-2025-41249, CVE-2025-48734, CVE-2025-48924, CVE-2025-49128, CVE-2025-52999, CVE-2025-53864, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, CVE-2025-59419, CVE-2025-67735, CVE-2025-68161, CVE-2025-8916, CVE-2026-24281, CVE-2026-24308, CVE-2026-33870, CVE-2026-33871, CVE-2026-5588, ghsa-58qw-p7qm-5rvh, ghsa-72hv-8253-57qq applied in versions: 4.0.0-r0, 4.0.0-r1","details":"Multiple security vulnerabilities affect the apache-hive package. These issues are resolved in later releases. See references for individual vulnerability details.","modified":"2026-05-22T06:00:04.512347030Z","published":"2026-05-18T13:11:46.835215Z","upstream":["CVE-2018-10237","CVE-2020-8908","CVE-2021-22569","CVE-2021-22570","CVE-2022-2047","CVE-2022-3171","CVE-2022-3509","CVE-2022-3510","CVE-2022-36364","CVE-2022-41881","CVE-2023-20861","CVE-2023-20863","CVE-2023-26048","CVE-2023-26049","CVE-2023-2976","CVE-2023-34462","CVE-2023-36479","CVE-2023-40167","CVE-2023-41900","CVE-2023-42503","CVE-2023-44981","CVE-2024-13009","CVE-2024-23454","CVE-2024-23944","CVE-2024-25710","CVE-2024-26308","CVE-2024-29131","CVE-2024-29133","CVE-2024-38808","CVE-2024-38820","CVE-2024-38827","CVE-2024-47554","CVE-2024-47561","CVE-2024-52046","CVE-2024-6763","CVE-2024-7254","CVE-2024-8184","CVE-2025-11143","CVE-2025-22233","CVE-2025-24970","CVE-2025-25193","CVE-2025-27821","CVE-2025-41249","CVE-2025-48734","CVE-2025-48924","CVE-2025-49128","CVE-2025-52999","CVE-2025-53864","CVE-2025-55163","CVE-2025-58056","CVE-2025-58057","CVE-2025-59419","CVE-2025-67735","CVE-2025-68161","CVE-2025-8916","CVE-2026-24281","CVE-2026-24308","CVE-2026-33870","CVE-2026-33871","CVE-2026-5588","ghsa-58qw-p7qm-5rvh","ghsa-72hv-8253-57qq"],"database_specific":{},"references":[{"type":"ADVISORY","url":"https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-SQ91016.json"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2018-10237"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2020-8908"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2021-22569"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2021-22570"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-2047"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-3171"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-3509"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-3510"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-36364"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-41881"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-20861"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-20863"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-26048"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-26049"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-2976"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-34462"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-36479"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-40167"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-41900"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-42503"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-44981"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-13009"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-23454"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-23944"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-25710"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-26308"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-29131"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-29133"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-38808"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-38820"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-38827"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-47554"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-47561"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-52046"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-6763"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-7254"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-8184"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-11143"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-22233"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-24970"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-25193"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-27821"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-41249"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-48734"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-48924"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-49128"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-52999"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-53864"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-55163"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-58056"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-58057"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-59419"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-67735"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-68161"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-8916"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-24281"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-24308"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-33870"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-33871"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-5588"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-58qw-p7qm-5rvh"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-72hv-8253-57qq"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10237"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8908"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-22569"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-22570"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2047"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3171"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3509"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3510"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-36364"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-41881"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-20861"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-20863"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-26048"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-26049"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2976"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-34462"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-36479"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40167"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-41900"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-42503"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44981"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-13009"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23454"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23944"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-25710"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26308"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-29131"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-29133"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38808"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38820"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-38827"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47554"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47561"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-52046"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-6763"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-7254"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8184"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-11143"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-22233"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-24970"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-25193"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-27821"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-41249"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48734"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48924"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49128"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-52999"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-53864"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-55163"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-58056"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-58057"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-59419"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67735"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-68161"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-8916"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-24281"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-24308"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33870"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33871"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-5588"}],"affected":[{"package":{"name":"apache-hive","ecosystem":"CleanStart"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.0.0-r1"}]}],"database_specific":{"source":"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-SQ91016.json"}}],"schema_version":"1.7.5"}