CVE-2025-15538

Published
View on NVD ↗
CVSS v3
5.3
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
2
PROJECTS

Description

A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. This and similar defects are tracked and handled via issue #6128.

assimp/assimp
assimp/assimp
The official Open-Asset-Importer-Library Repository. Loads 40+ 3D-file-formats into one unified and clean data structure.
GitHubGitHub
13K
user-attachments/files
user-attachments/filesUNAVAILABLE
upload file to github
GitHubGitHub
3