CVE-2025-2591 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFi…
Medium CVSS: 5.3

CVE-2025-2591

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFile_Quake1 of the file code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument skinwidth/skinheight leads to divide by zero. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The patch is identified as ab66a1674fcfac87aaba4c8b900b315ebc3e7dbd. It is recommended to apply a patch to fix this issue.
Vendor
Assimp
Product
Assimp
CWE
CWE-369
Yayın Tarihi
2025-03-21 14:15:16
Güncelleme
2025-07-17 21:53:55
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-369 Assimp MEDIUM Assimp 2025

Referanslar

https://github.com/assimp/assimp/issues/6009 https://github.com/assimp/assimp/issues/6009#issue-2877367021 https://github.com/assimp/assimp/pull/6047 https://github.com/assimp/assimp/pull/6047/commits/ab66a1674fcfac87aaba4c8b900b315ebc3e7dbd https://vuldb.com/?ctiid.300574 https://vuldb.com/?id.300574 https://vuldb.com/?submit.517781