CVE-2025-62728

creationtimestamp| type| source ---|---|--- 2025-11-26 10:33:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6jnrdxdto2s 2025-11-26 20:28:25+00:00| seen| https://seclists.org/oss-sec/2025/q4/208 2025-11-26 21:53:40+00:00| seen|...

com.expediagroup:drone-fly-app (=1.0.9), org.apache.hive:hive-beeline (>=4.0.0 <=4.1.0) +3 more potentially affected by CVE-2025-62728 via org.apache.hive:hive-standalone-metastore-server (>=4.0.0-alpha-1 <=4.1.0)

org.apache.hive:hive-standalone-metastore-server MAVEN version =4.0.0-alpha-1, =4.0.0, =4.0.0, =4.1.0 - org.apache.hive:hive-metastore-packaging =4.1.0 - org.apache.hive:hive-standalone-metastore-rest-catalog =4.1.0 Source cves: CVE-2025-62728 Source advisory: SNYK:JAVA-ORGAPACHEHIVE-14136073...

io.github.linghengqian:hive-server2-jdbc-driver-thin (=2.0.0), nl.basjes.parse.useragent:yauaa-hive (=7.32.0) +32 more potentially affected by CVE-2025-62728 via org.apache.hive:hive-common (=4.1.0)

org.apache.hive:hive-common MAVEN version =4.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hive:hive-common and may be impacted: - io.github.linghengqian:hive-server2-jdbc-driver-thin =2.0.0 - nl.basjes.parse.useragent:yauaa-hive =7.32...

org.apache.hive.hcatalog:hive-hcatalog-core (=4.1.0), org.apache.hive.hcatalog:hive-hcatalog-pig-adapter (=4.1.0) +10 more potentially affected by CVE-2025-62728 via org.apache.hive:hive-metastore (=4.1.0)

org.apache.hive:hive-metastore MAVEN version =4.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hive:hive-metastore and may be impacted: - org.apache.hive.hcatalog:hive-hcatalog-core =4.1.0 -...