Lucene search
+L

382 matches found

BDU FSTEC
BDU FSTEC
added 2024/08/12 12:0 a.m.107 views

The vulnerability of the FileHandler component in the Open Asset Import Library (Assimp) library allows a hacker to execute arbitrary code.

The vulnerability of the FileHandler component in the Open Asset Import Library Assimp library is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

8.4CVSS8.2AI score0.00281EPSS
Exploits0References5Affected Software3
Redos
Redos
added 2024/08/07 12:0 a.m.11 views

ROS-20240807-01

Vulnerability in the implementation of ColladaParser::ExtractDataObjectFromChannel function of the Open Asset Import Library Assimp 3D models Open Asset Import Library Assimp is related to memory usage after release. Exploitation of the vulnerability could allow an attacker acting remotely to gai...

8.8CVSS8.4AI score0.00723EPSS
Exploits1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/07/18 4:44 a.m.5 views

Assimp vulnerable to heap-based buffer overflow

Overview Assimp provided by Open Asset Import Library contains a heap-based buffer overflow vulnerability CWE-122. Yuhei Kawakoya of NTT Security Holdings reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An...

8.4CVSS7.8AI score0.00281EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/07/18 12:0 a.m.22 views

JVN#87710540: Assimp vulnerable to heap-based buffer overflow

Assimp provided by Open Asset Import Library contains a heap-based buffer overflow vulnerability CWE-122. Impact An attacker may execute arbitrary code by inputting a specially crafted file into the product. Solution Update the Software Update the software to the latest version according to the...

8.4CVSS8.1AI score0.00281EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.5 views

SUSE CVE-2021-45948

Open Asset Import Library aka assimp 5.1.0 and 5.1.1 has a heap-based buffer overflow in m3dsafestr called from m3dload and Assimp::M3DWrapper::M3DWrapper...

5.5CVSS5.8AI score0.00942EPSS
Exploits1References3
Gentoo Linux
Gentoo Linux
added 2022/10/16 12:0 a.m.32 views

Open Asset Import Library ("assimp"): Multiple Vulnerabilities

Background Open Asset Import Library is a library to import and export various 3d-model-formats including scene-post-processing to generate missing render data. Description Multiple vulnerabilities have been discovered in Fetchmail, the worst of which could result in email disclosure to third...

5.5CVSS1.7AI score0.00942EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/09/06 11:15 p.m.4 views

CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS5.7AI score0.00648EPSS
Exploits1References2
PyPA
PyPA
added 2022/09/06 11:15 p.m.9 views

PYSEC-2022-43149

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS7.3AI score0.00648EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/09/06 11:15 p.m.22 views

CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS6.6AI score0.00648EPSS
Exploits1References2
OSV
OSV
added 2022/09/06 11:15 p.m.3 views

UBUNTU-CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS5.8AI score0.00648EPSS
Exploits1References3
CVE
CVE
added 2022/09/06 9:8 p.m.59 views

CVE-2022-38528

CVE-2022-38528 concerns the Open Asset Import Library (assimp). The connected records describe a segmentation violation in the code path Assimp::XFileImporter::CreateMeshes stemming from commit 3c253ca. The documents do not enumerate affected versions, blast vectors, or concrete mitigations; no e...

6.5CVSS6.3AI score0.00648EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/09/06 9:8 p.m.31 views

CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.7AI score0.00648EPSS
Exploits1References1
OSV
OSV
added 2022/09/06 9:8 p.m.15 views

CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS7.1AI score0.00648EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2022/09/06 9:8 p.m.55 views

CVE-2022-38528

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS6.3AI score0.00648EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2022/09/06 12:0 a.m.2 views

PT-2022-37400 · Assimp · Assimp

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library assimp affected versions not specified Description: A segmentation violation was discovered in the Open Asset Import Library assimp via the component Assimp::XFileImporter::CreateMeshes. Recommendations: At the momen...

6.5CVSS6.9AI score
Exploits0References2
GitLab Advisory Database
GitLab Advisory Database
added 2022/09/06 12:0 a.m.29 views

Out-of-bounds Read

Open Asset Import Library assimp commit 3c253ca was discovered to contain a segmentation violation via the component Assimp::XFileImporter::CreateMeshes...

6.5CVSS3.3AI score0.00648EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/07/26 12:0 a.m.4 views

PT-2022-5112 · Assimp +2 · Assimp +2

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp versions prior to the version containing the fix for the segmentation violation in Assimp::XFileImporter::CreateMeshes Description: The issue is related to a segmentation violation in the...

7.8CVSS6.3AI score0.00648EPSS
Exploits1References14
PyPA
PyPA
added 2022/01/01 12:15 a.m.7 views

PYSEC-2022-43148

Open Asset Import Library aka assimp 5.1.0 and 5.1.1 has a heap-based buffer overflow in m3dsafestr called from m3dload and Assimp::M3DWrapper::M3DWrapper...

5.5CVSS7.5AI score0.00942EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2022/01/01 12:15 a.m.12 views

Heap overflow

Open Asset Import Library aka assimp 5.1.0 and 5.1.1 has a heap-based buffer overflow in m3dsafestr called from m3dload and Assimp::M3DWrapper::M3DWrapper...

4.3CVSS5.7AI score0.00942EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2022/01/01 12:15 a.m.12 views

CVE-2021-45948

Open Asset Import Library aka assimp 5.1.0 and 5.1.1 has a heap-based buffer overflow in m3dsafestr called from m3dload and Assimp::M3DWrapper::M3DWrapper...

5.5CVSS6.1AI score0.00942EPSS
Exploits1References5
Rows per page
Query Builder