漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Open Asset Import Library Assimp Malformed File MD2Loader.cpp InternReadFile stack-based overflow
Vulnerability Description
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function Assimp::MD2Importer::InternReadFile in the library code/AssetLib/MD2/MD2Loader.cpp of the component Malformed File Handler. The manipulation of the argument Name leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
Open Asset Import Library 安全漏洞
Vulnerability Description
Open Asset Import Library(assimp)是Open Asset Import Library开源的一个库。 Open Asset Import Library 5.4.3版本存在安全漏洞,该漏洞源于Assimp::MD2Importer::InternReadFile函数存在栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A