Assimp

Assimp

46 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-2750

Exploit
  • EPSS 0.12%
  • Veröffentlicht 25.03.2025 07:31:03
  • Zuletzt bearbeitet 17.07.2025 21:51:55

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. The m...

8.8

CVE-2025-2592

Exploit
  • EPSS 0.26%
  • Veröffentlicht 21.03.2025 14:00:18
  • Zuletzt bearbeitet 17.07.2025 21:52:30

A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based...

5.5

CVE-2025-2591

Exploit
  • EPSS 0.07%
  • Veröffentlicht 21.03.2025 13:31:08
  • Zuletzt bearbeitet 17.07.2025 21:53:55

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFile_Quake1 of the file code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument sk...

9.8

CVE-2025-2152

Exploit
  • EPSS 0.18%
  • Veröffentlicht 10.03.2025 13:31:04
  • Zuletzt bearbeitet 13.03.2025 18:15:14

A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function Assimp::BaseImporter::ConvertToUTF8 of the file BaseImporter.cpp of the component File Handler. The manipulat...

8.8

CVE-2025-2151

Exploit
  • EPSS 0.46%
  • Veröffentlicht 10.03.2025 13:15:36
  • Zuletzt bearbeitet 28.05.2025 18:28:41

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based...

6.2

CVE-2024-53425

Exploit
  • EPSS 0.04%
  • Veröffentlicht 21.11.2024 14:15:18
  • Zuletzt bearbeitet 13.06.2025 14:27:14

A heap-buffer-overflow vulnerability was discovered in the SkipSpacesAndLineEnd function in Assimp v5.4.3. This issue occurs when processing certain malformed MD5 model files, leading to an out-of-bounds read and potential application crash.

6.2

CVE-2024-48426

Exploit
  • EPSS 0.04%
  • Veröffentlicht 24.10.2024 21:15:14
  • Zuletzt bearbeitet 28.05.2025 21:06:42

A segmentation fault (SEGV) was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address (0x1000c9714971).

5.5

CVE-2024-48425

Exploit
  • EPSS 0.08%
  • Veröffentlicht 24.10.2024 21:15:14
  • Zuletzt bearbeitet 10.06.2025 18:47:27

A segmentation fault (SEGV) was detected in the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode function within the Assimp library during fuzz testing using AddressSanitizer. The crash occurs due to a read access violation at address 0x000000000...

5.5

CVE-2024-48424

Exploit
  • EPSS 0.03%
  • Veröffentlicht 24.10.2024 21:15:14
  • Zuletzt bearbeitet 10.06.2025 18:52:19

A heap-buffer-overflow vulnerability has been identified in the OpenDDLParser::parseStructure function within the Assimp library, specifically during the processing of OpenGEX files.

7.8

CVE-2024-48423

Exploit
  • EPSS 0.05%
  • Veröffentlicht 24.10.2024 21:15:14
  • Zuletzt bearbeitet 21.11.2024 09:40:45

An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library.