Assimp Half-Life 1 MDL Loader HL1MDLLoader.cpp read_sequence_infos out-of-bounds_CVE-2026-10233

4.8 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_sequence_infos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.

Basic Information

ID CVE-2026-10233

Source VulDB

Published Jun 1, 2026 at 06:45

Affected Product

Vendor n/a

Product Assimp

Version 6.0.0

Affected Versions n/a Assimp 6.0.0
n/a Assimp 6.0.1
n/a Assimp 6.0.2
n/a Assimp 6.0.3
n/a Assimp 6.0.4

CWE Classification

CWE-125 CWE-119

References

{
    "lastseen": "",
    "description": "A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_sequence_infos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.",
    "published": "2026-06-01T06:45:08.319Z",
    "modified": "2026-06-01T06:45:08.319Z",
    "type": "cve",
    "title": "Assimp Half-Life 1 MDL Loader HL1MDLLoader.cpp read_sequence_infos out-of-bounds",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/367512\nhttps://vuldb.com/vuln/367512/cti\nhttps://vuldb.com/cve/CVE-2026-10233\nhttps://vuldb.com/submit/821196\nhttps://github.com/assimp/assimp/issues/6619\nhttps://github.com/user-attachments/files/27228962/poc.zip\nhttps://github.com/assimp/assimp/",
    "id": "CVE-2026-10233",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "n/a Assimp 6.0.0\nn/a Assimp 6.0.1\nn/a Assimp 6.0.2\nn/a Assimp 6.0.3\nn/a Assimp 6.0.4",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Assimp",
    "version": "6.0.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}