CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-48425

A segmentation fault (SEGV) was detected in the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode function within the Assimp library during fuzz testing using AddressSanitizer. The crash occurs due to a read access violation at address 0x000000000460, which points to the zero page, indicating a null or invalid pointer dereference.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 9.9%

CVSS Severity

CVSS v3 Score 5.5

References

https://github.com/assimp/assimp/issues/5791

Products affected by CVE-2024-48425

Assimp » Assimp » Version: 5.4.3

cpe:2.3:a:assimp:assimp:5.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-48425

Products

Pricing

Contact Us