VYPR
Medium severity5.3NVD Advisory· Published Apr 14, 2025· Updated Apr 29, 2026

CVE-2025-3549

CVE-2025-3549

Description

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function Assimp::MD3Importer::ValidateSurfaceHeaderOffsets of the file code/AssetLib/MD3/MD3Loader.cpp of the component File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Assimp/Assimp2 versions
    cpe:2.3:a:assimp:assimp:5.4.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:assimp:assimp:5.4.3:*:*:*:*:*:*:*
    • (no CPE)range: =5.4.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.