CVE-2026-10229EPSS p2.5%

CVE-2026-10229CVE-2026-10229

Description

A vulnerability was determined in Assimp up to 6.0.4. This affects the function HL1MDLLoader::read_meshes of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. The project tagged the reported issue as bug.

Scoring

CVSS 5.3 ()
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS0.13% probability of exploitation · percentile 2.5% · 2026-06-19T12:03:05Z
Last modified2026-06-01

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-10230
CVE
CVE-2026-10231
CVE
CVE-2026-10233
CVE
CVE-2026-10200
CVE
CVE-2026-10198
CVE
CVE-2025-2756
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.