PT-2026-55577 · Assimp · Assimp

Tygls

·

Published

2026-07-03

·

Updated

2026-07-03

·

CVE-2026-14604

CVSS v2.0

6.5

Medium

VectorAV:N/AC:L/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Open Asset Import Library Assimp versions prior to 6.0.5
Description A double free issue exists in the PLY Model Handler component within the Assimp::Exporter::ExportToBlob() function located in the code/AssetLib/Ply/PlyLoader.cpp file. This flaw allows a remote attacker to trigger a double free, which occurs when the program attempts to free the same memory location twice, potentially leading to a crash or arbitrary code execution.
Recommendations Update Open Asset Import Library Assimp to version 6.0.5 or later.

Exploit

Fix

Buffer Overflow

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-14604

Affected Products

Assimp