CVE-2026-10231 | Assimp up to 6.0.4 Half-Life 1 MDL Loader HL1MDLLoader.cpp extract_anim_value num.total heap-based overflow (Issue 6616)

A vulnerability identified as critical has been detected in Assimp up to 6.0.4. Affected is the function HL1MDLLoader::extract_anim_value of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. Performing a manipulation of the argument num.total results in heap-based buffer overflow.

This vulnerability is cataloged as CVE-2026-10231. The attack must be initiated from a local position. Furthermore, there is an exploit available.

The project tagged the reported issue as bug.VulDB Recent EntriesRead More