CVE-2025-6120 | Open Asset Import Library Assimp up to 5.4.3 HL1MDLLoader.cpp read_meshes heap-based overflow (Issue 6220)

A vulnerability classified as critical was found in Open Asset Import Library Assimp up to 5.4.3. Affected by this vulnerability is the function read_meshes in the library assimp/code/AssetLib/MDL/HalfLife/HL1MDLLoader.cpp. The manipulation leads to heap-based buffer overflow.

This vulnerability is known as CVE-2025-6120. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

CVE-2025-6120 | Open Asset Import Library Assimp up to 5.4.3 HL1MDLLoader.cpp read_meshes heap-based overflow (Issue 6220)

Post correlati

CVE-2024-23834 | Discourse up to 3.1.4/3.2.0.beta4 cross site scripting (GHSA-rj3g-8q6p-63pc)

CVE-2024-9894 | code-projects Blood Bank System 1.0 reset.php useremail sql injection

CVE-2024-5925 | Theron Lite Plugin up to 2.0 on WordPress Button Shortcode cross site scripting

CVE-2024-4140 | rjbs Email-MIME up to 1.953 Multipart MIME Message allocation of resources (Issue 66)