CVE-2024-48423: An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library.

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library.

3 ranges

Vendor	Product	Version range	Fixed in
assimp	assimp	—	—
assimp	assimp	>= 0 < 6.0.2+ds-1	6.0.2+ds-1
debian	assimp	< assimp 6.0.2+ds-1 (forky)	assimp 6.0.2+ds-1 (forky)

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

osv7.8HIGH