Skip to main content

Assimp EUVD-2026-33565

| CVE-2026-10232 LOW
Use After Free (CWE-416)
2026-06-01 VulDB GHSA-7vqg-xr22-fvmv
Use After Free Denial Of Service Memory Corruption Assimp
1.9
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
1.9 LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Severity Changed
Jun 01, 2026 - 08:22 NVD
MEDIUM LOW
CVSS changed
Jun 01, 2026 - 08:22 NVD
5.3 (MEDIUM) 1.9 (LOW)
Analysis Generated
Jun 01, 2026 - 07:52 vuln.today

DescriptionCVE.org

A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::~aiNode of the file scene.cpp of the component ASE File Parser. Executing a manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. The project tagged the reported issue as bug.

AnalysisAI

Use-after-free in Assimp's ASE File Parser - specifically the aiNode::~aiNode destructor in scene.cpp - allows a local, low-privileged attacker to corrupt heap memory, potentially causing denial of service or achieving arbitrary code execution in applications that load 3D model files. All Assimp versions through 6.0.4 are affected. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain local low-privilege access
Delivery
Place crafted ASE file in Assimp-processed path
Exploit
Application loads file via Assimp ASE parser
Execution
aiNode destructor accesses freed heap memory
Persist
Heap corruption triggered
Impact
Crash (DoS) or potential code execution
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Local system access with low-privilege credentials is required (CVSS AV:L, PR:L). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 5.3 (Medium) is shaped by a local attack vector (AV:L), low complexity (AC:L), low privilege requirements (PR:L), no user interaction (UI:N), and low impact across all CIA pillars. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A local attacker with standard user-level credentials places a specially crafted ASE-format 3D model file in a location processed by a target application - such as a game engine's asset import directory or a 3D editor's file open dialog. When Assimp parses the file, the `aiNode::~aiNode` destructor in `scene.cpp` accesses heap memory that has already been freed during the node tree teardown, corrupting heap state. …
Remediation No vendor-released patch version has been confirmed from available references at time of analysis - the CVSS temporal remediation level is explicitly marked as not defined (RL:X), and the upstream GitHub issue (#6617) does not indicate a tagged fixed release. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-33565 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy