CVE-2025-11275 | Open Asset Import Library Assimp 6.0.2 OpenDDLParserUtils.h getNextSeparator heap-based overflow (Issue 6357 / EUVD-2025-32439)
A vulnerability labeled as critical has been found in Open Asset Import Library Assimp 6.0.2. Affected by this vulnerability is the function ODDLParser::getNextSeparator in the library assimp/contrib/openddlparser/include/openddlparser/OpenDDLParserUtils.h. Such manipulation leads to heap-based buffer overflow.
This vulnerability is listed as CVE-2025-11275. The attack must be carried out locally. In addition, an exploit is available.