Description
A vulnerability was determined in Open Asset Import Library Assimp up to 6.0.4. Affected is the function Assimp::Exporter::ExportToBlob of the file code/AssetLib/Ply/PlyLoader.cpp of the component PLY Model Handler. This manipulation causes double free. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report.
Published: 2026-07-03
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from a double‑free condition in the ExportToBlob function of Assimp’s PlyLoader.cpp. Manipulation of a PLY model can cause the program to release the same memory block twice, corrupting heap data. Such corruption could lead to unexpected program termination or, if an attacker can control the payload leveraged to overwrite data or execute malicious code, though the CVE description does not expressly confirm arbitrary execution.

Affected Systems

Any software that integrates Open Asset Import Library Assimp version 6.0.4 or earlier and uses the PLY Model Handler’s ExportToBlob routine is affected. Applications that import or export PLY files or explicitly invoke ExportToBlob are at risk; code paths that never trigger this function or do not handle PLY files are not impacted by the described flaw.

Risk and Exploitability

The CVSS score of 5.3 indicates a moderate severity, reflecting the potential for remote exploitation as stated in the CVE description. The EPSS score is 0.00233, indicating a very low probability of exploitation, and the vulnerability is not listed in CISA’s KEV catalog, yet the issue has been publicly disclosed and can be triggered remotely through untrusted PLY data. Deployments that accept external PLY files are therefore exposed to the risk of denial of service or potential exploitation, pending availability of a vendor patch.

Generated by OpenCVE AI on July 4, 2026 at 20:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Assimp to a release newer than 6.0.4 where the double‑free is addressed. If the vendor has not yet published a fix, monitor the repository for updates.
  • If an upgrade is not currently possible, remove or disable the PLY import/export capability in the application to eliminate the Export from being exercised.
  • Run the application under defensive runtime measures—enable ASLR, stack can the least privileges—to reduce the impact of any remaining memory corruption.

Generated by OpenCVE AI on July 4, 2026 at 20:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 03 Jul 2026 18:45:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in Open Asset Import Library Assimp up to 6.0.4. Affected is the function Assimp::Exporter::ExportToBlob of the file code/AssetLib/Ply/PlyLoader.cpp of the component PLY Model Handler. This manipulation causes double free. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report.
Title Open Asset Import Library Assimp PLY Model PlyLoader.cpp ExportToBlob double free
First Time appeared Assimp
Assimp assimp
Weaknesses CWE-119
CWE-415
CPEs cpe:2.3:a:assimp:assimp:*:*:*:*:*:*:*:*
Vendors & Products Assimp
Assimp assimp
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-07-03T18:30:08.783Z

Reserved: 2026-07-03T13:44:08.821Z

Link: CVE-2026-14604

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-04T20:15:04Z

Weaknesses
  • CWE-119

    Improper Restriction of Operations within the Bounds of a Memory Buffer

  • CWE-415

    Double Free