Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-5203

Опубликовано: 26 мая 2025
Источник: nvd
CVSS3: 3.3
CVSS3: 7.8
CVSS2: 1.7
EPSS Низкий

Описание

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function SkipSpaces in the library assimp/include/assimp/ParsingUtils.h. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:assimp:assimp:*:*:*:*:*:*:*:*
Версия до 5.4.3 (исключая)

EPSS

Процентиль: 4%
0.00022
Низкий

3.3 Low

CVSS3

7.8 High

CVSS3

1.7 Low

CVSS2

Дефекты

CWE-119
CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2025-5203

CVSS3: 3.3
ubuntu
23 дня назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function SkipSpaces in the library assimp/include/assimp/ParsingUtils.h. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

redhat логотип

CVE-2025-5203

CVSS3: 3.3
redhat
23 дня назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function SkipSpaces in the library assimp/include/assimp/ParsingUtils.h. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

debian логотип

CVE-2025-5203

CVSS3: 3.3
debian
23 дня назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. I ...

github логотип

GHSA-j83p-cqxw-j383

CVSS3: 3.3
github
23 дня назад

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function SkipSpaces in the library assimp/include/assimp/ParsingUtils.h. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

EPSS

Процентиль: 4%
0.00022
Низкий

3.3 Low

CVSS3

7.8 High

CVSS3

1.7 Low

CVSS2

Дефекты

CWE-119
CWE-125