CVE-2025-5169 – Assimp MDLImporter Out-of-Bounds Read Vulnerability

May 26, 2025

CVE ID : CVE-2025-5169

Published : May 26, 2025, 5:15 a.m. | 3 hours, 56 minutes ago

Description : A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::InternReadFile_3DGS_MDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5170 – LliSoft MTA Maita Training System SQL Injection Vulnerability

Next Article Rilasciato il kernel Linux 6.15: Tutte le Novità della Nuova Versione

Highlights

CVE-2025-4038 – Code-projects Train Ticket Reservation System Stack-Based Buffer Overflow Vulnerability

April 28, 2025

CVE ID : CVE-2025-4038

Published : April 28, 2025, 9:15 p.m. | 1 hour, 50 minutes ago

Description : A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Smashing Animations Part 4: Optimising SVGs

I test AI tools for a living. Here are 3 image generators I actually use and how

The world’s smallest 65W USB-C charger is my latest travel essential

This Spotlight alternative for Mac is my secret weapon for AI-powered search

Tech prophet Mary Meeker just dropped a massive report on AI trends – here’s your TL;DR

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Cast Model Properties to a Uri Instance in 12.17

My Favorite Obsidian Plugins and Their Hidden Settings

My Favorite Obsidian Plugins and Their Hidden Settings

Rilasciata /e/OS 3.0: Nuova Vita per Android Senza Google, Più Privacy e Controllo per l’Utente

Rilasciata Oracle Linux 9.6: Scopri le Novità e i Miglioramenti nella Sicurezza e nelle Prestazioni

CVE-2025-5169 – Assimp MDLImporter Out-of-Bounds Read Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

CVE-2025-2812 – Mydata Informatics Ticket Sales Automation SQL Injection

CVE-2025-45790 – TOTOLINK A3100R Buffer Overflow Vulnerability

Former PlayStation exclusive ‘Zenless Zone Zero’ gets its Xbox release date, and it’s very very soon

Easter Eggs of AI. Memes, Duplicates, Biases and Other AI Hallucinations and Why They Happen

CVE-2025-4038 – Code-projects Train Ticket Reservation System Stack-Based Buffer Overflow Vulnerability

Inclusive Dark Mode: Designing Accessible Dark Themes For All Users

Thunderbird: Il Canale Release Diventerà Predefinito a Marzo 2025

ANN vs CNN vs RNN: Understanding the Difference

CVE-2025-5169 – Assimp MDLImporter Out-of-Bounds Read Vulnerability

Related Posts