CVE-2026-29628

Published April 13th, 2026

View on NVD ↗

CVSS v3

6.2

MEDIUM

CVSS v2

N/A

Affected

PROJECTS

Description

A stack overflow in the experimental/tinyobj_loader_opt.h file of tinyobjloader commit d56555b allows attackers to cause a Denial of Service (DoS) via supplying a crafted .mtl file.

kiyochii/CVE-2026-29628

GitHub

kiyochii/tinyobjloader

Tiny but powerful single file wavefront obj loader

GitHub