Логотип exploitDog
bind:"GHSA-8qp4-7g6w-2wp3" OR bind:"CVE-2025-3159"
Консоль
Логотип exploitDog

exploitDog

bind:"GHSA-8qp4-7g6w-2wp3" OR bind:"CVE-2025-3159"

Количество 8

Количество 8

github логотип

GHSA-8qp4-7g6w-2wp3

4 месяца назад

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
EPSS: Низкий
ubuntu логотип

CVE-2025-3159

4 месяца назад

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
EPSS: Низкий
redhat логотип

CVE-2025-3159

4 месяца назад

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
EPSS: Низкий
nvd логотип

CVE-2025-3159

4 месяца назад

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
EPSS: Низкий
debian логотип

CVE-2025-3159

4 месяца назад

A vulnerability, which was classified as critical, was found in Open A ...

CVSS3: 5.3
EPSS: Низкий
fstec логотип

BDU:2025-07008

5 месяцев назад

Уязвимость компонента ASE File Handler кроссплатформенной библиотеки импорта 3D-моделей Assimp (Open Asset Import Library), позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.3
EPSS: Низкий
oracle-oval логотип

ELSA-2025-12842

7 дней назад

ELSA-2025-12842: qt5-qt3d security update (MODERATE)

EPSS: Низкий
redos логотип

ROS-20250616-05

около 2 месяцев назад

Множественные уязвимости assimp

CVSS3: 9.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
github логотип
GHSA-8qp4-7g6w-2wp3

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
0%
Низкий
4 месяца назад
ubuntu логотип
CVE-2025-3159

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
0%
Низкий
4 месяца назад
redhat логотип
CVE-2025-3159

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
0%
Низкий
4 месяца назад
nvd логотип
CVE-2025-3159

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.

CVSS3: 5.3
0%
Низкий
4 месяца назад
debian логотип
CVE-2025-3159

A vulnerability, which was classified as critical, was found in Open A ...

CVSS3: 5.3
0%
Низкий
4 месяца назад
fstec логотип
BDU:2025-07008

Уязвимость компонента ASE File Handler кроссплатформенной библиотеки импорта 3D-моделей Assimp (Open Asset Import Library), позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.3
0%
Низкий
5 месяцев назад
oracle-oval логотип
ELSA-2025-12842

ELSA-2025-12842: qt5-qt3d security update (MODERATE)

7 дней назад
redos логотип
ROS-20250616-05

Множественные уязвимости assimp

CVSS3: 9.8
около 2 месяцев назад

Уязвимостей на страницу