Launch Week Day 1: Announcing Security Design Review
Start for Free
HIGH 8.8 PyPI

CVE-2025-2750

PYSEC-2025-161 · CVE-2025-2750

Published · Modified

Description

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. The manipulation leads to out-of-bounds write. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes