Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

36 matches found

OSV
OSVadded 2026/01/23 12:23 p.m.2 views

OESA-2026-1216 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability was found in Open...

5.5CVSS4.3AI score0.00112EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/01/13 12:0 a.m.1 views

MiracleLinux 9 : qt5-qt3d-5.15.9-2.el9_7.1 (AXSA:2025-11462:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11462:03 advisory. assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 Tenable has extracted the preceding description blo...

7.8CVSS5.8AI score0.00034EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2025/12/02 8:4 a.m.3 views

assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow

A flaw was found in the assimp library. Processing a specially crafted input file can trigger a heap-based buffer overflow due to an integer overflow when reading texture data, causing a crash to the application linked to the library and resulting in a denial of service...

7.8CVSS5.9AI score0.00034EPSS
Exploits1References7
Oracle linux
Oracle linuxadded 2025/11/25 12:0 a.m.3 views

qt5-qt3d security update

5.15.9-2.1 - Assimp: Fix heap-based overflow in Q3DLoader::InternReadFile Resolves: RHEL-120986...

7.8CVSS7.3AI score0.00034EPSS
Exploits1
Redos
Redosadded 2025/11/24 12:0 a.m.2 views

ROS-20251124-06

A vulnerability in the 3D model import library Open Asset Import Library Assimp is related to manipulation of the Q3DImporter::InternReadFile function of assimp/code/AssetLib/Q3D/Q3DLoader.cpp file. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.7AI score0.00092EPSS
Exploits2
OSV
OSVadded 2025/11/21 6:13 p.m.3 views

RLSA-2025:19911 Moderate: qt5-qt3d security update

Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick applications. Security Fixes: assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 For more details about the...

6.1CVSS7AI score0.00034EPSS
Exploits1References2
Rockylinux
Rockylinuxadded 2025/11/21 6:13 p.m.3 views

qt5-qt3d security update

An update is available for qt5-qt3d. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt 3D provides functionality for near-realtime simulation systems with suppo...

7.8CVSS7.1AI score0.00034EPSS
Exploits1
RedHat Linux
RedHat Linuxadded 2025/11/11 3:6 p.m.1 views

assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow

A flaw was found in the assimp library. Processing a specially crafted input file can trigger a heap-based buffer overflow due to an integer overflow when reading texture data, causing a crash to the application linked to the library and resulting in a denial of service...

7.8CVSS5.9AI score0.00034EPSS
Exploits1References7
OSV
OSVadded 2025/11/11 12:0 a.m.4 views

ALSA-2025:20963 Moderate: qt5-qt3d security update

Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick applications. Security Fixes: assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 For more details about the...

7.8CVSS7AI score0.00034EPSS
Exploits1References4
AlmaLinux
AlmaLinuxadded 2025/11/11 12:0 a.m.4 views

Moderate: qt5-qt3d security update

Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick applications. Security Fixes: assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 For more details about the...

7.8CVSS7.1AI score0.00034EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/11/07 12:0 a.m.2 views

Oracle Linux 9 : qt5-qt3d (ELSA-2025-19911)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-19911 advisory. 5.15.9-2.1 - Assimp: Fix heap-based overflow in Q3DLoader::InternReadFile Resolves: RHEL-120988 Tenable has extracted the preceding description block directly...

7.8CVSS5.9AI score0.00034EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2025/11/06 4:46 p.m.4 views

Moderate: Red Hat Security Advisory: qt5-qt3d security update

An update for qt5-qt3d is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.3AI score0.00034EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-11274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file...

5.5CVSS5.4AI score0.00029EPSS
Exploits1References4
Snyk
Snykadded 2025/10/05 2:42 a.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the InternReadFile function. An attacker can execute arbitrary code or cause a denial of service by providing specially crafted input files. Remediation A fix was pushed into the master branch but not yet...

7.8CVSS6.3AI score0.00034EPSS
Exploits1References2
OSV
OSVadded 2025/10/05 2:15 a.m.0 views

PYSEC-2025-157

A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing a manipulation can lead to heap-based buffer overflow. The attack needs to be launched locally. The exploit...

7.8CVSS6.2AI score0.00034EPSS
Exploits1References5
OSV
OSVadded 2025/10/05 2:15 a.m.2 views

CVE-2025-11277

A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing a manipulation can lead to heap-based buffer overflow. The attack needs to be launched locally. The exploit...

7.8CVSS5.8AI score
Exploits0References5
PyPA
PyPAadded 2025/10/05 2:15 a.m.7 views

PYSEC-2025-157

A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing a manipulation can lead to heap-based buffer overflow. The attack needs to be launched locally. The exploit...

7.8CVSS6.2AI score0.00034EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2025/10/05 1:15 a.m.2 views

DEBIAN-CVE-2025-11274

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been...

5.5CVSS4.2AI score0.00029EPSS
Exploits1References1
PyPA
PyPAadded 2025/10/05 1:15 a.m.7 views

PYSEC-2025-155

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been...

5.5CVSS5.4AI score0.00029EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2025/10/05 1:15 a.m.2 views

PYSEC-2025-155

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been...

5.5CVSS5.4AI score0.00029EPSS
Exploits1References5
Rows per page
Query Builder