Lucene search
K

1390 matches found

OSV
OSV
added 2025/05/26 4:15 a.m.5 views

DEBIAN-CVE-2025-5166

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...

5.5CVSS3.7AI score0.00208EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/26 4:0 a.m.15 views

CVE-2025-5168 Open Asset Import Library Assimp MDLLoader.cpp ImportUVCoordinate_3DGS_MDL345 out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function MDLImporter::ImportUVCoordinate3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument iIndex leads to out-of-bound...

4.8CVSS0.00208EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/05/26 4:0 a.m.11 views

CVE-2025-5168 Open Asset Import Library Assimp MDLLoader.cpp ImportUVCoordinate_3DGS_MDL345 out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function MDLImporter::ImportUVCoordinate3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument iIndex leads to out-of-bound...

4.8CVSS3.9AI score0.00208EPSS
Exploits1References6
CVE
CVE
added 2025/05/26 4:0 a.m.71 views

CVE-2025-5168

CVE-2025-5168 affects Open Asset Import Library Assimp 5.4.3. The vulnerable component is the function MDLImporter::ImportUVCoordinate_3DGS_MDL345 in the file assimp/code/AssetLib/MDL/MDLLoader.cpp , where manipulation of the argument iIndex leads to an out-of-bounds read. A local attack is requi...

5.5CVSS6.9AI score0.00208EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/05/26 3:31 a.m.17 views

CVE-2025-5167 Open Asset Import Library Assimp LWOLoader.h GetS0 out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as problematic. Affected by this vulnerability is the function LWOImporter::GetS0 in the library assimp/code/AssetLib/LWO/LWOLoader.h. The manipulation of the argument out leads to out-of-bounds read. The...

4.8CVSS0.00208EPSS
Exploits1References6
CVE
CVE
added 2025/05/26 3:31 a.m.65 views

CVE-2025-5167

CVE-2025-5167 affects Open Asset Import Library Assimp, version 5.4.3. The vulnerability is in LWOImporter::GetS0 (LWOLoader.h), where manipulating the argument can cause an out-of-bounds read. Evidence indicates the issue requires local access, the exploit has been disclosed publicly, and resear...

5.5CVSS7AI score0.00208EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/26 3:31 a.m.7 views

CVE-2025-5167 Open Asset Import Library Assimp LWOLoader.h GetS0 out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as problematic. Affected by this vulnerability is the function LWOImporter::GetS0 in the library assimp/code/AssetLib/LWO/LWOLoader.h. The manipulation of the argument out leads to out-of-bounds read. The...

4.8CVSS4AI score0.00208EPSS
Exploits1References6
NVD
NVD
added 2025/05/26 3:15 a.m.13 views

CVE-2025-5165

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...

5.5CVSS0.00208EPSS
Exploits1References6
OSV
OSV
added 2025/05/26 3:15 a.m.8 views

CVE-2025-5165

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...

5.5CVSS7.2AI score
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/05/26 3:0 a.m.18 views

CVE-2025-5166 Open Asset Import Library Assimp MDC File Parser MDCLoader.cpp InternReadFile out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...

4.8CVSS3.9AI score0.00208EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/05/26 3:0 a.m.14 views

CVE-2025-5166 Open Asset Import Library Assimp MDC File Parser MDCLoader.cpp InternReadFile out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...

4.8CVSS0.00208EPSS
Exploits1References6
CVE
CVE
added 2025/05/26 3:0 a.m.87 views

CVE-2025-5166

Open Asset Import Library Assimp 5.4.3 contains CVE-2025-5166 affecting MDCImporter::InternReadFile in MDCLoader.cpp (MDC File Parser). The manipulation of the argument pcVerts leads to an out-of-bounds read and local access may be exploited. Public disclosure of the exploit is noted. Connected O...

5.5CVSS4.1AI score0.00208EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2025/05/26 2:31 a.m.8 views

CVE-2025-5165

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...

5.5CVSS3.9AI score0.00208EPSS
Exploits1
CVE
CVE
added 2025/05/26 2:31 a.m.63 views

CVE-2025-5165

Summary (CVE-2025-5165): Open Asset Import Library Assimp 5.4.3 contains a vulnerability in MDCImporter::ValidateSurfaceHeader (MDCLoader.cpp) where manipulating argument pcSurface2 yields an out-of-bounds read. The issue requires local access to exploit and, per OSV updates, has been combined wi...

5.5CVSS7AI score0.00208EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/05/26 2:31 a.m.18 views

CVE-2025-5165 Open Asset Import Library Assimp MDCLoader.cpp ValidateSurfaceHeader out-of-bounds

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...

4.8CVSS0.00208EPSS
Exploits1References6
OSV
OSV
added 2025/04/04 6:15 p.m.4 views

DEBIAN-CVE-2025-29476

Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...

5.5CVSS5.3AI score0.0021EPSS
Exploits0References1
OSV
OSV
added 2025/04/04 6:15 p.m.2 views

UBUNTU-CVE-2025-29476

Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...

5.5CVSS5.8AI score0.0021EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/04/04 12:0 a.m.4 views

PT-2025-15039 · C-Blosc2 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: c-blosc2 versions 2.17.0 and before Description: The issue is related to a Buffer Overflow vulnerability in the compress chunk fuzzer function when used with oss-fuzz. This vulnerability is identified in c-blosc2 on commit...

5.5CVSS6AI score0.0021EPSS
Exploits0References13
CNNVD
CNNVD
added 2025/04/04 12:0 a.m.4 views

C-Blosc2 安全漏洞

C-Blosc2 is a fast, compressed, persistent binary data storage library for C from the Blosc open source. A security vulnerability exists in C-Blosc2 v.2.17.0 and earlier versions that stems from a buffer overflow problem in compresschunkfuzzer...

5.5CVSS6.9AI score0.0021EPSS
Exploits0References2
OSV
OSV
added 2025/03/02 2:30 p.m.9 views

CVE-2022-49733 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function calls sndpcmossmakeready at first, then takes the paramslock mutex for t...

4.7CVSS5.1AI score0.00132EPSS
Exploits0References8
Rows per page
Query Builder