Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Open Asset Import Library — Vulnerabilities & Security Advisories 38

Browse all 38 CVE security advisories affecting Open Asset Import Library. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The Open Asset Import Library serves as a widely adopted, open-source tool for developers to load and convert various 3D model and animation file formats into a unified internal data structure. Its primary utility lies in simplifying asset pipeline integration for game engines and simulation software. Historically, the library has been vulnerable to numerous security flaws, predominantly involving buffer overflows, out-of-bounds reads, and integer overflows within its parsing logic. These defects frequently enable remote code execution or denial-of-service attacks when processing maliciously crafted input files. With thirty-eight recorded CVEs, the project has faced significant scrutiny regarding its input validation mechanisms. While no massive, high-profile data breaches directly attributed to the library have dominated public discourse, the sheer volume of vulnerabilities highlights persistent challenges in maintaining robust security hygiene within complex C++ codebases that handle untrusted binary data.

Top products by Open Asset Import Library: Assimp
CVE IDTitleCVSSSeverityPublished
CVE-2025-15538 Open Asset Import Library Assimp LWOMaterial.cpp FindUVChannels use after free — AssimpCWE-416 5.3 Medium2026-01-18
CVE-2025-11277 Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow — AssimpCWE-122 5.3 Medium2025-10-05
CVE-2025-11275 Open Asset Import Library Assimp OpenDDLParserUtils.h getNextSeparator heap-based overflow — AssimpCWE-122 5.3 Medium2025-10-05
CVE-2025-11274 Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile allocation of resources — AssimpCWE-770 3.3 Low2025-10-05
CVE-2025-6120 Open Asset Import Library Assimp HL1MDLLoader.cpp read_meshes heap-based overflow — AssimpCWE-122 5.3 Medium2025-06-16
CVE-2025-6119 Open Asset Import Library Assimp BVHLoader.cpp ReadNodeChannels use after free — AssimpCWE-416 5.3 Medium2025-06-16
CVE-2025-5204 Open Asset Import Library Assimp MDLMaterialLoader.cpp ParseSkinLump_3DGS_MDL7 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5203 Open Asset Import Library Assimp ParsingUtils.h SkipSpaces out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5202 Open Asset Import Library Assimp HL1MDLLoader.cpp validate_header out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5201 Open Asset Import Library Assimp LWOLoader.cpp CountVertsAndFacesLWO2 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5200 Open Asset Import Library Assimp MDLLoader.cpp InternReadFile_Quake1 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5169 Open Asset Import Library Assimp MDLLoader.cpp InternReadFile_3DGS_MDL345 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5168 Open Asset Import Library Assimp MDLLoader.cpp ImportUVCoordinate_3DGS_MDL345 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5167 Open Asset Import Library Assimp LWOLoader.h GetS0 out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5166 Open Asset Import Library Assimp MDC File Parser MDCLoader.cpp InternReadFile out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-5165 Open Asset Import Library Assimp MDCLoader.cpp ValidateSurfaceHeader out-of-bounds — AssimpCWE-125 3.3 Low2025-05-26
CVE-2025-3549 Open Asset Import Library Assimp File MD3Loader.cpp ValidateSurfaceHeaderOffsets heap-based overflow — AssimpCWE-122 5.3 Medium2025-04-14
CVE-2025-3548 Open Asset Import Library Assimp File types.h Set heap-based overflow — AssimpCWE-122 5.3 Medium2025-04-14
CVE-2025-3196 Open Asset Import Library Assimp Malformed File MD2Loader.cpp InternReadFile stack-based overflow — AssimpCWE-121 5.3 Medium2025-04-04
CVE-2025-3160 Open Asset Import Library Assimp File SceneCombiner.cpp AddNodeHashes out-of-bounds — AssimpCWE-125 3.3 Low2025-04-03
CVE-2025-3159 Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow — AssimpCWE-122 5.3 Medium2025-04-03
CVE-2025-3158 Open Asset Import Library Assimp LWO File LWOAnimation.cpp UpdateAnimRangeSetup heap-based overflow — AssimpCWE-122 5.3 Medium2025-04-03
CVE-2025-3016 Open Asset Import Library Assimp MDL File MDLMaterialLoader.cpp ParseTextureColorData resource consumption — AssimpCWE-400 4.3 Medium2025-03-31
CVE-2025-3015 Open Asset Import Library Assimp ASE File ASELoader.cpp BuildUniqueRepresentation out-of-bounds — AssimpCWE-125 6.3 Medium2025-03-31
CVE-2025-2757 Open Asset Import Library Assimp MD5 File MD5Parser.cpp AI_MD5_PARSE_STRING_IN_QUOTATION heap-based overflow — AssimpCWE-122 6.3 Medium2025-03-25
CVE-2025-2756 Open Asset Import Library Assimp AC3D File ACLoader.cpp ConvertObjectSection heap-based overflow — AssimpCWE-122 6.3 Medium2025-03-25
CVE-2025-2755 Open Asset Import Library Assimp AC3D File ACLoader.cpp ConvertObjectSection out-of-bounds — AssimpCWE-125 6.3 Medium2025-03-25
CVE-2025-2754 Open Asset Import Library Assimp AC3D File ACLoader.cpp ConvertObjectSection heap-based overflow — AssimpCWE-122 6.3 Medium2025-03-25
CVE-2025-2753 Open Asset Import Library Assimp LWS File LWSLoader.cpp MergeScenes out-of-bounds — AssimpCWE-125 6.3 Medium2025-03-25
CVE-2025-2752 Open Asset Import Library Assimp CSM File fast_atof.h fast_atoreal_move out-of-bounds — AssimpCWE-125 4.3 Medium2025-03-25

This page lists every published CVE security advisory associated with Open Asset Import Library. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.