CVE-2024-46632

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-46632

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46632.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-46632

Downstream

DEBIAN-CVE-2024-46632

UBUNTU-CVE-2024-46632

Published

2024-09-26T16:15:08.783Z

Modified

2025-11-20T12:28:33.415714Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

[none]

Details

Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function.

References

https://github.com/assimp/assimp/issues/5771

Affected packages

Git / github.com/assimp/assimp

Affected ranges

Type: GIT
Repo: https://github.com/assimp/assimp
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

c35200e38ea8f058812b83de2ef32c6093b0ece2

Affected versions

5.*

5.2.0

Release3.*

Release3.1_RC1

v.*

v.5.0.0.rc1

v.5.0.0.rc2

v3.*

v3.1

v3.1-rc2

v3.1.1

v3.2

v3.3

v3.3.1

v4.*

v4.0.0

v4.0.0.rc1

v4.0.1

v4.1.0

v5.*

v5.0.0

v5.1.0

v5.1.0.rc1

v5.1.1

v5.1.2

v5.1.3

v5.1.4

v5.1.5

v5.1.6

v5.2.0

v5.2.1

v5.2.2

v5.2.3

v5.2.4

v5.2.5

v5.3.0

v5.3.1

v5.4.0

v5.4.1

v5.4.2

v5.4.3

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-46632.json"