SUSE CVE-2026-10201

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

CVE-2026-10201

A flaw was found in Assimp. A local user can perform a manipulation within the FBXExporter::WriteObjects function, leading to a divide-by-zero error. This vulnerability can cause a Denial of Service DoS, making the application unavailable. Mitigation Mitigation for this issue is either not...

EUVD-2026-33523

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

DEBIAN-CVE-2026-10201

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

Assimp security vulnerabilities

Assimp is an open-source library developed by Assimp. It is used for importing and exporting various 3D model formats. Versions of Assimp 6.0.4 and earlier contained security vulnerabilities. These vulnerabilities stemmed from a zero-division error in the FBXExporter.cpp file’s...

CVE-2026-10201 Assimp UV Channel FBXExporter.cpp WriteObjects divide by zero

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

CVE-2026-10201

Assimp up to 6.0.4 contains a vulnerability in FBXExporter::WriteObjects (FBXExporter.cpp) within the UV Channel Handler. A manipulation can trigger a divide-by-zero error when processing FBX data, requiring local access to exploit. Public disclosure of the exploit is noted, and applying a patch ...

PT-2026-45218

A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally. The exploit has be...

SUSE CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

SUSE CVE-2025-70071

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray...

SUSE CVE-2025-70072

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial components...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read through the ParseVectorDataArray function in FBXParser.cpp. An attacker can cause the application to crash or become unresponsive by providing specially crafted input data. Remediation There is no fixed version for...

CVE-2025-70071

A flaw was found in Assimp. A remote attacker can exploit a vulnerability in the FBXParser.cpp file, specifically within the ParseVectorDataArray function, to cause a denial of service. This can lead to the affected application becoming unresponsive or crashing, disrupting its availability...

CVE-2025-70067

A flaw was found in Assimp, an open-source asset import library, specifically within its FBX Importer. This buffer overflow vulnerability occurs when processing a specially crafted FBX file. An attacker could exploit this by providing a malicious FBX file, causing a property key string to be copi...

CVE-2025-70070

A flaw was found in Assimp. A remote attacker can exploit this vulnerability by manipulating the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry function, leading to a denial of service DoS. This can make the affected system or application unavailable to legitimate users...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read through the FBXConverter::ConvertMeshMultiMaterial process. An attacker can cause the application to crash or become unresponsive by submitting specially crafted input files. Remediation There is no fixed version for...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read through the MeshGeometry process in FBXMeshGeometry.cpp. An attacker can cause the application to crash or become unresponsive by providing specially crafted input files. Remediation There is no fixed version for...

DEBIAN-CVE-2025-70071

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray...

DEBIAN-CVE-2025-70072

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial components...

CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...