VYPR
Medium severity5.3NVD Advisory· Published Jan 18, 2026· Updated Apr 29, 2026

CVE-2025-15538

CVE-2025-15538

Description

A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. This and similar defects are tracked and handled via issue #6128.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Assimp/Assimp2 versions
    cpe:2.3:a:assimp:assimp:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:assimp:assimp:*:*:*:*:*:*:*:*range: <=6.0.2
    • (no CPE)range: <=6.0.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.