6 matches found
CVE-2025-15538
A flaw was found in Open Asset Import Library Assimp. A local attacker can exploit a use-after-free vulnerability in the Assimp::LWOImporter::FindUVChannels function by manipulating input. This could lead to a limited impact on the confidentiality, integrity, and availability of the affected syst...
Linux Distros Unpatched Vulnerability : CVE-2025-15538
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the FindUVChannels function. An attacker can cause a crash or unintended behavior by triggering access to memory after it has been freed. Remediation There is no fixed version for Assimp. References - GitHub Issue -...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the FindUVChannels function. An attacker can cause a crash or unintended behavior by triggering access to memory after it has been freed. Remediation There is no fixed version for assimp. References - GitHub Issue -...
CVE-2025-15538
A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to ...
CVE-2025-15538
Open Asset Import Library Assimp up to 6.0.2 is affected. The vulnerability is in Assimp::LWOImporter::FindUVChannels (LWOMaterial.cpp), causing use-after-free due to the underlying handling in that function. Exploitation requires local access, and public disclosure of the exploit exists. Connect...