GHSA-7jv6-5f7h-7g3g

Опубликовано: 02 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper).

Ссылки

EPSS

Процентиль: 43%

0.00209

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2021-45948

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-45948

CVSS3: 5.5

ubuntu

около 4 лет назад

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper).

CVE-2021-45948

CVSS3: 5.5

nvd

около 4 лет назад

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper).

CVE-2021-45948

CVSS3: 5.5

debian

около 4 лет назад

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-base ...

EPSS

Процентиль: 43%

0.00209

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2021-45948

Дефекты

CWE-787