CVE-2025-11275 | Open Asset Import Library Assimp 6.0.2 OpenDDLParserUtils.h getNextSeparator heap-based overflow (Issue 6357)

Inserito da Angelo Barbosa | Ott 4, 2025 | CVE

A vulnerability labeled as critical has been found in Open Asset Import Library Assimp 6.0.2. Affected by this vulnerability is the function ODDLParser::getNextSeparator in the library assimp/contrib/openddlparser/include/openddlparser/OpenDDLParserUtils.h. Such manipulation leads to heap-based buffer overflow.

This vulnerability is listed as CVE-2025-11275. The attack must be carried out locally. In addition, an exploit is available.

CVE-2025-11275 | Open Asset Import Library Assimp 6.0.2 OpenDDLParserUtils.h getNextSeparator heap-based overflow (Issue 6357)

Post correlati

CVE-2025-1068 | ESRI ArcGIS AllSource up to 1.2.0/1.3.0 untrusted search path

CVE-2024-46705 | Linux Kernel up to 6.10.6 DRM Privilege Escalation (b1c9fbed3884/c7117419784f)

CVE-2024-6263 | WP Lightbox 2 up to 3.0.6.6 on WordPress cross site scripting

CVE-2024-33025 | Qualcomm Snapdragon Auto up to XR2 5G Platform BSD Parameter buffer over-read