Denial of Service Vulnerability in Assimp Library Version 6.0.2
CVE-2025-70071

5.9MEDIUM

Key Information:

Vendor: Assimp
Status: Assimp Library
Vendor: CVE Published:; 4 May 2026

What is CVE-2025-70071?

The Assimp library version 6.0.2 has a vulnerability that enables remote attackers to exploit a flaw in the FBXParser.cpp file, specifically during the execution of the ParseVectorDataArray() function. This can lead to a denial of service, potentially disrupting the normal operations of applications utilizing this library. It is essential for users to evaluate their systems and implement appropriate safeguards to mitigate this risk.

References

http://assimp.com

https://gist.github.com/GunP4ng/6d80919905037929ce9266ccd...

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 4, 2026
Vulnerability Reserved
Jan 9, 2026

CVE-2025-70071 Data

JSON