Launch Week Day 1: Announcing Security Design Review
Start for Free
MEDIUM 5.5 PyPI

CVE-2025-11274

PYSEC-2025-155 · CVE-2025-11274

Published · Modified

Description

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes