CVE-2022-45748
published 2023-01-20CVE-2022-45748: An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| assimp | assimp | — | — |
| assimp | assimp | >= 0 < 5.3.1+ds-2 | 5.3.1+ds-2 |
| assimp | assimp | >= 0 < 5.3.1+ds-2 | 5.3.1+ds-2 |
| debian | assimp | < assimp 5.3.1+ds-2 (forky) | assimp 5.3.1+ds-2 (forky) |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH