CVE-2026-10229

Published
View on NVD ↗
CVSS v3
5.3
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
2
PROJECTS

Description

A vulnerability was determined in Assimp up to 6.0.4. This affects the function HL1MDLLoader::read_meshes of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. The project tagged the reported issue as bug.

assimp/assimp
assimp/assimp
The official Open-Asset-Importer-Library Repository. Loads 40+ 3D-file-formats into one unified and clean data structure.
GitHubGitHub
13K
user-attachments/files
user-attachments/filesUNAVAILABLE
upload file to github
GitHubGitHub
3