HIGH 7.8 PyPI
CVE-2025-11275
PYSEC-2025-156 · CVE-2025-11275
Published · Modified
Description
A vulnerability was identified in Open Asset Import Library Assimp 6.0.2. Affected by this vulnerability is the function ODDLParser::getNextSeparator in the library assimp/contrib/openddlparser/include/openddlparser/OpenDDLParserUtils.h. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used.
References
Ready to move
Start Securing
Free, no credit card | First findings in minutes