Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-2754

Опубликовано: 25 мар. 2025
Источник: nvd
CVSS3: 6.3
CVSS3: 8.8
CVSS2: 7.5
EPSS Низкий

Описание

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as critical. Affected by this vulnerability is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument it leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:assimp:assimp:5.4.3:*:*:*:*:*:*:*

EPSS

Процентиль: 22%
0.0007
Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2025-2754

CVSS3: 6.3
ubuntu
6 месяцев назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as critical. Affected by this vulnerability is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument it leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

redhat логотип

CVE-2025-2754

CVSS3: 6.3
redhat
6 месяцев назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as critical. Affected by this vulnerability is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument it leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

debian логотип

CVE-2025-2754

CVSS3: 6.3
debian
6 месяцев назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. I ...

github логотип

GHSA-gvgr-wxrg-3hr3

CVSS3: 6.3
github
6 месяцев назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as critical. Affected by this vulnerability is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument it leads to heap-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 22%
0.0007
Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119