CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-11275

A vulnerability was identified in Open Asset Import Library Assimp 6.0.2. Affected by this vulnerability is the function ODDLParser::getNextSeparator in the library assimp/contrib/openddlparser/include/openddlparser/OpenDDLParserUtils.h. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.5%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.3

References

https://github.com/assimp/assimp/issues/6357
https://github.com/user-attachments/files/22417682/poc.zip
https://vuldb.com/?ctiid.327009
https://vuldb.com/?id.327009
https://vuldb.com/?submit.658675

Products affected by CVE-2025-11275

Assimp » Assimp » Version: 6.0.2

cpe:2.3:a:assimp:assimp:6.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-11275

Products

Pricing

Contact Us