CVE-2025-3588

Name of the Vulnerable Software and Affected Versions joelittlejohn jsonschema2pojo version 1.2.2

Description A vulnerability has been found in the JSON File Handler component, affecting the apply function of the org/jsonschema2pojo/rules/SchemaRule.java file. This issue leads to a stack-based buffer overflow and requires a local attack to exploit. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond.

Recommendations For joelittlejohn jsonschema2pojo version 1.2.2, as a temporary workaround, consider disabling the apply function of the org/jsonschema2pojo/rules/SchemaRule.java file until a patch is available. Restrict access to the JSON File Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.