CVE-2026-10198 | Assimp up to 6.0.4 glTFImporter glTFImporter.cpp ImportMeshes null pointer dereference (Issue 6609)

Inserito da Angelo Barbosa | Mag 31, 2026 | CVE

A vulnerability was found in Assimp up to 6.0.4. It has been classified as problematic. Affected by this vulnerability is the function Assimp::glTFImporter::ImportMeshes of the file glTFImporter.cpp of the component glTFImporter. This manipulation causes null pointer dereference.

This vulnerability is tracked as CVE-2026-10198. The attack is restricted to local execution. Moreover, an exploit is present.

The project tagged the reported issue as bug.

CVE-2026-10198 | Assimp up to 6.0.4 glTFImporter glTFImporter.cpp ImportMeshes null pointer dereference (Issue 6609)

Post correlati

CVE-2024-41482 | Typora up to 1.9.2 MathJax cross site scripting

CVE-2024-31011 | beescms 4.0 admin_template.php path traversal

CVE-2026-2069 | ggml-org llama.cpp up to 55abc39 GBNF Grammar llama-grammar.cpp llama_grammar_advance_stack stack-based overflow (Issue 18988 / ID 18993)

CVE-2023-41613 | EzViz Studio 2.2.0 uncontrolled search path (ID 175684)