CVE-2025-5165 | Open Asset Import Library Assimp 5.4.3 MDCLoader.cpp ValidateSurfaceHeader pcSurface2 out-of-bounds (Issue 6167)

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read.

The identification of this vulnerability is CVE-2025-5165. Attacking locally is a requirement. Furthermore, there is an exploit available.

The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.VulDB Recent EntriesRead More