Lucene search
K

187 matches found

NVD
NVD
added 2026/07/03 9:16 p.m.7 views

CVE-2026-14610

A flaw has been found in Open Asset Import Library Assimp up to 6.0.5. Impacted is the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. This manipulation causes heap-based buffer overflow. The attack is restricted to local...

5.3CVSS0.00128EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/07/03 8:45 p.m.40 views

CVE-2026-14610 Open Asset Import Library Assimp CSM File CSMLoader.cpp InternReadFile heap-based overflow

A flaw has been found in Open Asset Import Library Assimp up to 6.0.5. Impacted is the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. This manipulation causes heap-based buffer overflow. The attack is restricted to local...

5.3CVSS0.00128EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/10 1:46 p.m.11 views

CVE-2026-10229

A flaw was found in Assimp, a library used for importing and exporting various 3D model formats. This vulnerability, a heap-based buffer overflow, exists within the HL1MDLLoader::readmeshes function of the Half-Life 1 MDL Loader component. A local attacker could exploit this by providing speciall...

5.3CVSS5.6AI score0.00125EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/06/08 11:25 a.m.9 views

CVE-2026-10231

A flaw was found in Assimp, a library for importing various 3D model formats. A local attacker could exploit a heap-based buffer overflow vulnerability in the Half-Life 1 MDL Loader component. By manipulating a specific argument, an attacker could cause the application to crash, leading to a deni...

5.3CVSS5.7AI score0.00124EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.15 views

Amazon Linux 2 : qt5-qt3d, --advisory ALAS2-2026-3335 (ALAS-2026-3335)

The version of qt5-qt3d installed on the remote host is prior to 5.15.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3335 advisory. Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in...

9.8CVSS5.8AI score0.00523EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/06/02 3:37 p.m.13 views

CVE-2026-10197

A flaw was found in Assimp. A local user with access to the system could exploit a null pointer dereference vulnerability in the glTF2Importer::ImportEmbeddedTextures function. This flaw could lead to a Denial of Service DoS, making the application unavailable. Mitigation Users should avoid...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2026/06/02 1:44 a.m.16 views

SUSE CVE-2026-10197

A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library code/AssetLib/glTF2/glTF2Importer.cpp of the component TF File Handler. The manipulation results in null pointer dereference. The attack is only possible with local...

3.3CVSS5.4AI score0.00115EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/02 12:0 a.m.23 views

Linux Distros Unpatched Vulnerability : CVE-2026-10200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser...

5.3CVSS5.9AI score0.00124EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/01 5:35 p.m.12 views

CVE-2026-10200

A flaw was found in Assimp. A local attacker could trigger a heap-based buffer overflow in the glTFCommon::CopyValue function, part of the 4x4 Matrix Parser component. This vulnerability could lead to limited information disclosure, denial of service, or other impacts on system integrity and...

5.3CVSS5.9AI score0.00124EPSS
Exploits0References10
Snyk
Snyk
added 2026/06/01 8:24 a.m.11 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the readanimations function of the Half-Life 1 MDL Loader component. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input files. Remediation There is no...

5.6CVSS6.3AI score0.00127EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 8:16 a.m.22 views

UBUNTU-CVE-2026-10233

A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::readsequenceinfos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to...

4.8CVSS5.3AI score0.00113EPSS
Exploits0References9
CVE
CVE
added 2026/06/01 6:15 a.m.42 views

CVE-2026-10231

CVE-2026-10231 affects Assimp up to 6.0.4, specifically the HL1MDLLoader.cpp function HL1MDLLoader::extract_anim_value. A heap-based buffer overflow is triggered by manipulating the num.total argument. The attack requires local access, and public PoC/exploit material exists. The description does ...

5.3CVSS6.2AI score0.00124EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/06/01 6:0 a.m.9 views

CVE-2026-10230

A vulnerability was identified in Assimp up to 6.0.4. This impacts the function Assimp::MDL::HalfLife::HL1MDLLoader::readanimations of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

5.3CVSS6.1AI score0.00127EPSS
Exploits0
OSV
OSV
added 2026/06/01 12:16 a.m.7 views

UBUNTU-CVE-2026-10201

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

4.8CVSS5.3AI score0.00112EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.9 views

Assimp 安全漏洞

Assimp is an open-source library developed by Assimp. It is used for importing and exporting various 3D model formats. Versions of Assimp 6.0.4 and earlier contain security vulnerabilities, which stem from issues with the HL1MDLLoader::readmeshes function in the HL1MDLLoader.cpp file. These...

5.3CVSS5.9AI score0.00125EPSS
Exploits0References7
Snyk
Snyk
added 2026/05/31 11:16 p.m.7 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the ImportMeshes function of the glTFImporter component. An attacker can cause a denial of service by triggering a null pointer dereference through local access with low privileges. Remediation There is no...

5CVSS5.2AI score0.00113EPSS
Exploits0References2
OSV
OSV
added 2026/05/31 11:16 p.m.12 views

UBUNTU-CVE-2026-10200

A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser. Performing a manipulation results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit has bee...

5.3CVSS5.8AI score0.00124EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/05/31 10:45 p.m.31 views

CVE-2026-10200 Assimp 4x4 Matrix glTFCommon.h CopyValue heap-based overflow

A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser. Performing a manipulation results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit has bee...

5.3CVSS0.00124EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.23 views

Assimp 安全漏洞

Assimp is an open-source library developed by Assimp. It is used for importing and exporting various 3D model formats. Versions of Assimp 6.0.4 and earlier contained security vulnerabilities. These vulnerabilities stemmed from a function in the 4x4 Matrix Parser component called...

5.3CVSS6.2AI score0.00124EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.10 views

Assimp 代码问题漏洞

Assimp is an open-source library developed by Assimp. It is used for importing and exporting various 3D model formats. Versions of Assimp 6.0.4 and earlier contained code vulnerabilities. These vulnerabilities originated from a function in the TF File Handler component called...

4.8CVSS5.9AI score0.00115EPSS
Exploits0References8
Rows per page
Query Builder