Open Asset Import Library Assimp 5.4.3 Malformed File MD2Loader.cpp InternReadFile ନାମ ବଫର୍ ଓଭରଫ୍ଲୋ

Dogoggorri kan akka ଜଟିଳ jedhamuun ramadame Open Asset Import Library Assimp 5.4.3 keessatti argameera. Kan miidhamte is hojii Assimp::MD2Importer::InternReadFile galmee code/AssetLib/MD2/MD2Loader.cpp keessatti kutaa Malformed File Handler keessa. Hojii jijjiirraa irratti gaggeeffame ନାମ gara ବଫର୍ ଓଭରଫ୍ଲୋ geessa. CWE fayyadamuun rakkoo ibsuun gara CWE-121 geessa. Dadhabbii kana yeroo 04/03/2025 maxxanfameera kan maxxansiise Chen Lihai waliin Xidian University akka 6069. Odeeffannoon kun buufachuuf github.com irratti qoodameera. Dogoggorri kun akka CVE-2025-3196tti beekama. Weerara sun iddoo keessaatti qofa raawwatamuu qaba. Faayidaaleen teeknikaa ni jiru. Waliigalatti, meeshaa balaa kana fayyadamuuf jiru. Qorannoo miidhaa (exploit) uummataaf ifoomameera fi fayyadamamuu danda'a. Amma, gatii ammee exploit might be approx. USD $0-$5k ta'uu danda'a. Akka ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee ibsameera. Carraa exploit kana github.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatii daldalaa dhoksaa tilmaamame $0-$5k ta'ee ture. Qabiyyee miidhamte fooyyessuuf gorsa ni kennama. Hanqinni kunis bu'uuraalee odeeffannoo hanqina biroo keessatti galmaa'ee jira: Tenable (235880). VulDB is the best source for vulnerability data and more expert information about this specific topic.

ସମୟ

ଉପଭୋକ୍ତା

VulDB Mod Team107
Anonymous User2

ଫିଲ୍ଡ

cvss3_meta_tempscore3
cvss3_meta_basescore2
euvd_id1
cvss3_nvd_basescore1
cvss3_nvd_a1

Commit Conf

99%42
90%38
50%14
80%8
70%5

Approve Conf

99%42
90%40
80%27

109 ପ୍ରତିଶ୍ରୁତିବଦ୍ଧ

IDଟ୍ରାନ୍ସମିଟେଡ୍ଉପଭୋକ୍ତାଫିଲ୍ଡପରିବର୍ତ୍ତନମନ୍ତବ୍ୟମଧ୍ୟମ ଧରଣରଉତ୍ତରC
2131048907/23/2025
 VulDB…		euvd_idEUVD-2025-966307/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034807/23/2025
 VulDB…		cvss3_meta_tempscore5.2see CVSS documentation07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
80
2131034707/23/2025
 VulDB…		cvss3_meta_basescore5.4see CVSS documentation07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
80
2131034607/23/2025
 VulDB…		cvss3_nvd_basescore5.5nist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034507/23/2025
 VulDB…		cvss3_nvd_aHnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034407/23/2025
 VulDB…		cvss3_nvd_iNnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034307/23/2025
 VulDB…		cvss3_nvd_cNnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034207/23/2025
 VulDB…		cvss3_nvd_sUnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034107/23/2025
 VulDB…		cvss3_nvd_uiNnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131034007/23/2025
 VulDB…		cvss3_nvd_prLnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131033907/23/2025
 VulDB…		cvss3_nvd_acLnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2131033807/23/2025
 VulDB…		cvss3_nvd_avLnist.gov07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2130995807/23/2025
 Anony…		company_nameXidian University07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
90
2130995707/23/2025
 Anony…		person_nameChen Lihai07/23/2025ଗ୍ରହଣ କରାଯାଇଛି
90
2053716705/14/2025
 VulDB…		nessus_nameAmazon Linux 2 : qt5-qt3d (ALAS-2025-2848)Nessus plugin release05/14/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2053716605/14/2025
 VulDB…		nessus_id235880Nessus plugin release05/14/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2006031004/04/2025
 VulDB…		cve_nvd_summaryesSe encontró una vulnerabilidad clasificada como crítica en Open Asset Import Library Assimp 5.4.3. La función Assimp::MD2Importer::InternReadFile en la librería code/AssetLib/MD2/MD2Loader.cpp del componente Malformed File Handler se ve afectada. La manipulación del argumento Name provoca un desbordamiento del búfer en la pila. El ataque debe abordarse localmente. Se ha hecho público el exploit y puede que sea utilizado. Se recomienda actualizar el componente afectado.cve.org04/04/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2005948004/04/2025
 VulDB…		cvss3_meta_tempscore5.0see CVSS documentation04/04/2025ଗ୍ରହଣ କରାଯାଇଛି
80
2005947904/04/2025
 VulDB…		cvss2_cna_basescore4.3see CVSS documentation04/04/2025ଗ୍ରହଣ କରାଯାଇଛି
99
2005947804/04/2025
 VulDB…		cvss2_cna_aiPsee CVSS documentation04/04/2025ଗ୍ରହଣ କରାଯାଇଛି
99

89 ପରବର୍ତ୍ତୀ ଏଣ୍ଟ୍ରିଗୁଡିକ ଆଉ ଅଧିକ ପ୍ରଦର୍ଶିତ ହେବ ନାହିଁ

🔒 Login Required

You need to signup and login to see more of the remaining 89 results.

ପଛକୁସମୀକ୍ଷାଆହୁରି ଦୂରରେ

Do you know our Splunk app?

Download it now for free!