CVE-2025-2757 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function AI_MD5_PARSE_STRING_IN_QUOTA…
Medium CVSS: 5.3

CVE-2025-2757

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function AI_MD5_PARSE_STRING_IN_QUOTATION of the file code/AssetLib/MD5/MD5Parser.cpp of the component MD5 File Handler. The manipulation of the argument data leads to heap-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Vendor
Assimp
Product
Assimp
CWE
CWE-119
Yayın Tarihi
2025-03-25 10:15:16
Güncelleme
2025-07-17 21:46:34
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-119 Assimp MEDIUM Assimp 2025

Referanslar

https://github.com/assimp/assimp/issues/6019 https://github.com/assimp/assimp/issues/6019#issue-2877376386 https://vuldb.com/?ctiid.300862 https://vuldb.com/?id.300862 https://vuldb.com/?submit.517817