CVE-2026-10197 in Assimpinformation

Résumé

par MITRE • 01/06/2026

A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library code/AssetLib/glTF2/glTF2Importer.cpp of the component TF File Handler. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. It is advisable to implement a patch to correct this issue. The pull request to fix this issue awaits acceptance.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgation

01/06/2026

Modérer

accepté

Entrée

VDB-367477

CPE

prêt

CWE

CWE-476 (confirmé)

Exploitation

Télécharger

CVSS

3.3 (VulDB)

EPSS

0.00013

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-10197
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-10197
CVE Details	https://www.cvedetails.com/cve/CVE-2026-10197/

◂ Précédent Aperçu Suivant ▸

Might our Artificial Intelligence support you?

Check our Alexa App!