CVE-2025-11277 | Open Asset Import Library Assimp 6.0.2 Q3DLoader.cpp InternReadFile heap-based overflow (Issue 6358)

Inserito da Angelo Barbosa | Ott 4, 2025 | CVE

A vulnerability described as critical has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing manipulation can lead to heap-based buffer overflow.

This vulnerability is registered as CVE-2025-11277. The attack needs to be launched locally. Furthermore, an exploit is available.

CVE-2025-11277 | Open Asset Import Library Assimp 6.0.2 Q3DLoader.cpp InternReadFile heap-based overflow (Issue 6358)

Post correlati

CVE-2024-30537 | WPClever WPC Badge Management for WooCommerce Plugin up to 2.4.0 on WordPress authorization

CVE-2024-2969 | backie WP-Eggdrop Plugin up to 0.1 on WordPress Setting wpegg_updateOptions cross-site request forgery

CVE-2024-12899 | 1000 Projects Attendance Tracking Management System 1.0 /admin/course_action.php course_code sql injection

CVE-2023-37527 | HCL BigFix Platform up to 9.5.23/10.0.10 Web Reports cross site scripting (KB0110209)