Login Sign Up

CVE-2025-2754

6.3 MEDIUM

📋 TL;DR

A critical heap-based buffer overflow vulnerability in Assimp's AC3D file handler allows remote attackers to execute arbitrary code or crash applications by providing specially crafted AC3D files. This affects any software using Assimp 5.4.3 to process AC3D files, potentially enabling remote code execution.

💻 Affected Systems

Products:
  • Open Asset Import Library (Assimp)
Versions: 5.4.3 (specific version mentioned; check if earlier versions affected)
Operating Systems: All platforms running Assimp
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability triggers when processing AC3D files via the AC3DImporter component.

📦 What is this software?

Assimp by Assimp

View all CVEs affecting Assimp →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the application using Assimp, potentially leading to full system compromise.

🟠

Likely Case

Application crash (denial of service) or limited code execution depending on exploit sophistication and mitigations like ASLR.

🟢

If Mitigated

Application crash with no code execution if modern exploit mitigations are effective.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit disclosed publicly; remote attack vector with crafted files makes weaponization probable.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check latest Assimp release or GitHub issues for fix

Vendor Advisory: https://github.com/assimp/assimp/issues/6015

Restart Required: Yes

Instructions:

1. Monitor Assimp GitHub for official patch release.
2. Update Assimp to patched version.
3. Rebuild and redeploy any applications using Assimp.

🔧 Temporary Workarounds

Disable AC3D file processing

all

Remove or disable the AC3D file handler in Assimp configuration to prevent exploitation.

Modify Assimp configuration to exclude AC3D importer; exact method depends on application integration.

Input validation for AC3D files

all

Implement strict validation or sandboxing for AC3D file inputs before passing to Assimp.

Implement file type verification and size limits in application code.

🧯 If You Can't Patch

  • Isolate systems using Assimp behind firewalls and restrict network access.
  • Implement application allowlisting and monitor for crashes or unusual behavior.

🔍 How to Verify

Check if Vulnerable:

Check Assimp version; if using 5.4.3 and AC3D processing is enabled, assume vulnerable.

Check Version:

assimp version (if CLI installed) or check library version in application build.

Verify Fix Applied:

Update to patched version and test with known malicious AC3D files to ensure no crash or exploit.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes or errors related to Assimp AC3D processing
  • Unexpected file processing from untrusted sources

Network Indicators:

  • Inbound transfers of AC3D files to vulnerable services

SIEM Query:

Search for 'assimp' or 'AC3D' in application logs with error or crash events.

📊 Metadata

CVE ID: CVE-2025-2754
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
CWE: CWE-119
EPSS Score: 0.17% exploit probability (38th percentile)
Published: March 25, 2025
Last Updated: July 17, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-2754, you might also want to check these:

CVE-2024-23613 10.0

A critical buffer overflow vulnerability in Symantec Deployment Solution 7.9 allows remote, unauthen...

Same vulnerability type (CWE-119)
CVE-2024-23615 10.0

A critical buffer overflow vulnerability in Symantec Messaging Gateway allows remote unauthenticated...

Same vulnerability type (CWE-119)
CVE-2026-2776 10.0

This CVE describes a sandbox escape vulnerability in Firefox's Telemetry component due to incorrect ...

Same vulnerability type (CWE-119)