3 matches found
ai.h2o:h2o-orc-parser (>=3.10.0.5 <=3.10.3.6), co.cask.hydrator:hive-plugins (>=1.2.0 <=2.1.2) +556 more potentially affected by CVE-2025-3588 via org.jsonschema2pojo:jsonschema2pojo-core (>=0.4.0 <=1.3.3)
org.jsonschema2pojo:jsonschema2pojo-core MAVEN version =0.4.0, =3.10.0.5, =1.2.0, =1.0.1, =1.5.17 and more Source cves: CVE-2025-3588 Source advisory: SNYK:JAVA-ORGJSONSCHEMA2POJO-10074189...
ai.h2o:h2o-orc-parser (>=3.10.0.5 <=3.10.3.6), co.cask.hydrator:hive-plugins (>=1.2.0 <=2.1.2) +548 more potentially affected by CVE-2025-3588 via org.jsonschema2pojo:jsonschema2pojo-core (>=0.4.0 <=1.2.2)
org.jsonschema2pojo:jsonschema2pojo-core MAVEN version =0.4.0, =3.10.0.5, =1.2.0, =1.0.1, =1.5.17 and more Source cves: CVE-2025-3588 Source advisory: OSV:GHSA-66RC-VG9F-48M7...
Stack-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow through the apply function in org/jsonschema2pojo/rules/SchemaRule.java. An attacker can execute arbitrary code or cause denial of service by manipulating the JSON file input to trigger a stack-based buffer...