CVE-2026-10232
Assimp ASE File scene.cpp ~aiNode use after free
CVSS Score
5.3
EPSS Score
0.0%
EPSS Percentile
0th
A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::~aiNode of the file scene.cpp of the component ASE File Parser. Executing a manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. The project tagged the reported issue as bug.
| CWE | CWE-416 CWE-119 |
| Vendor | n/a |
| Product | assimp |
| Published | Jun 1, 2026 |
| Last Updated | Jun 2, 2026 |
Stay Ahead of the Next One
Get instant alerts for n/a assimp
Be the first to know when new medium vulnerabilities affecting n/a assimp are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
n/a / Assimp
6.0.0 6.0.1 6.0.2 6.0.3 6.0.4
References
vuldb.com: https://vuldb.com/vuln/367511 vuldb.com: https://vuldb.com/vuln/367511/cti vuldb.com: https://vuldb.com/cve/CVE-2026-10232 vuldb.com: https://vuldb.com/submit/821192 github.com: https://github.com/assimp/assimp/issues/6617 github.com: https://github.com/user-attachments/files/27200601/poc.zip github.com: https://github.com/assimp/assimp/
Credits
๐ TYGLS (VulDB User) VulDB CNA Team