Primary

Context

Open Asset Import Library Assimp Out-of-Bounds Write Vulnerability in CSM File Handler

Vulnerability

A critical out-of-bounds write vulnerability has been identified in Open Asset Import Library (Assimp) version 5.4.3. The issue arises in the CSM File Handler component, specifically within the 'Assimp::CSMImporter::InternReadFile' function, located in 'code/AssetLib/CSM/CSMLoader.cpp'. This vulnerability can be exploited remotely, potentially leading to arbitrary code execution, if a victim is tricked into processing a malformed CSM file with Assimp.

Impact

Exploitation of this vulnerability causes a segmentation fault due to a write operation to a null pointer, which can be leveraged to execute arbitrary code.

Reproduction

The vulnerability can be reproduced by building Assimp with address sanitizer and fuzzer support. After compiling the library, the fuzzer can be run with a crafted input that triggers the out-of-bounds write by manipulating the CSM importer's file reading function.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

10.0

exploitability

5.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

10.0

exploitability

5.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Open Asset Import Library Assimp Out-of-Bounds Write Vulnerability in CSM File Handler

Vulnerability

Impact

Reproduction

Affected Products

Open Asset Import Library Assimp

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating