Description
Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy() without runtime length validation
Published: 2026-05-04
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A buffer overflow occurs in the Assimp library’s FBX Importer within aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed‑size heap buffer using strcpy() without runtime length validation. This unchecked copy can corrupt heap memory; the CVE description does not state the exact consequence, but it is inferred that such an overflow could enable arbitrary code execution or other memory corruption, potentially compromising confidentiality, integrity, or availability. The weakness relates to CWE-120 (Buffer Copy without Checking Size) and CWE-122 (Buffer Over-read/Overflow).

Affected Systems

Assimp versions up to and including 6.0.2 are affected. Any application that links against these releases and processes FBX files is potentially vulnerable. The original vendor information is not listed, so the affected products are identified only as the Assimp library itself.

Risk and Exploitability

The CVSS score of 9.8 indicates the highest severity. The EPSS score of < 1% indicates a very low but nonzero exploitation probability. The vulnerability is not listed in the CISA KEV catalog. It can be triggered by feeding an attacker‑crafted FBX file to the importer, implying an untrusted file payload as the attack vector. Because the CVE description does not provide a confirmed exploit, the risk is primarily theoretical but still significant.

Generated by OpenCVE AI on May 5, 2026 at 17:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to a newer Assimp release that fixes the overflow if such a release exists; check the official repository or distribution for an updated version.
  • Apply input validation to FBX property key strings before they reach aiMaterial::AddBinaryProperty, ensuring the string length does not exceed the buffer capacity.
  • Compile the consuming application with security hardening options such as -fstack-protector, enable address‑space layout randomization, and use stack canaries to mitigate exploitation impact.

Generated by OpenCVE AI on May 5, 2026 at 17:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 05 May 2026 17:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 05 May 2026 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-122
Metrics cvssV3_1

{'score': 5.6, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L'}

 cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Tue, 05 May 2026 02:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-122
CWE-20

Tue, 05 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title Heap Buffer Overflow in Assimp FBX Importer aiMaterial::AddBinaryProperty Assimp: Assimp: Buffer overflow in FBX Importer allows arbitrary code execution via crafted file.
Weaknesses CWE-120
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.6, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L'}

threat_severity

Moderate

Mon, 04 May 2026 16:45:00 +0000

Type Values Removed Values Added
Title Heap Buffer Overflow in Assimp FBX Importer aiMaterial::AddBinaryProperty
Weaknesses CWE-122
CWE-20

Mon, 04 May 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Assimp
Assimp assimp
Vendors & Products Assimp
Assimp assimp

Mon, 04 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy() without runtime length validation
References

Subscriptions

Assimp Assimp
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-05T16:03:26.574Z

Reserved: 2026-01-09T00:00:00.000Z

Link: CVE-2025-70067

cve-icon Vulnrichment

Updated: 2026-05-05T15:59:30.609Z

cve-icon NVD

Status : Deferred

Published: 2026-05-04T14:16:29.350

Modified: 2026-05-05T19:47:31.297

Link: CVE-2025-70067

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-04T00:00:00Z

Links: CVE-2025-70067 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-05T18:00:13Z

Weaknesses