Vulnerability Database

309,364

Total vulnerabilities in the database

CVE-2025-11274

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized.

  • Published: Oct 5, 2025
  • Updated: Nov 16, 2025
  • CVE: CVE-2025-11274
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 3.3
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CVSS v2:

  • Severity: Low
  • Score: 1.7
  • AV:L/AC:L/Au:S/C:N/I:N/A:P

CWEs:

Software From Fixed in
assimp / assimp 6.0.2 6.0.2.x