CVE-2025-6119 | Open Asset Import Library Assimp up to 5.4.3 BVHLoader.cpp ReadNodeChannels pNode use after free (Issue 6219)

A vulnerability classified as critical has been found in Open Asset Import Library Assimp up to 5.4.3. Affected is the function Assimp::BVHLoader::ReadNodeChannels in the library assimp/code/AssetLib/BVH/BVHLoader.cpp. The manipulation of the argument pNode leads to use after free.

This vulnerability is traded as CVE-2025-6119. Attacking locally is a requirement. Furthermore, there is an exploit available.

The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.VulDB Recent EntriesRead More