PT-2026-55577 · Assimp · Assimp
Tygls
·
Published
2026-07-03
·
Updated
2026-07-03
·
CVE-2026-14604
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Open Asset Import Library Assimp versions prior to 6.0.5
Description
A double free issue exists in the PLY Model Handler component within the
Assimp::Exporter::ExportToBlob() function located in the code/AssetLib/Ply/PlyLoader.cpp file. This flaw allows a remote attacker to trigger a double free, which occurs when the program attempts to free the same memory location twice, potentially leading to a crash or arbitrary code execution.Recommendations
Update Open Asset Import Library Assimp to version 6.0.5 or later.
Exploit
Fix
Buffer Overflow
Double Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Assimp