Kimkulling

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp versions up to 5.4.3 Description: A critical issue has been found in the Open Asset Import Library Assimp, affecting the function `aiString::Set` in the library include/assimp/types.h of the component File Handler. This issue leads to a heap-based buffer overflow. The attack can be launched on the local host. Recommendations: For versions up to 5.4.3, apply a patch to fix this issue. As a temporary workaround, consider restricting the use of the `aiString::Set` function in the File Handler component until a patch is available.