CVE-2022-45748 - OpenCVE

An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Assimp	Assimp

Configuration 1 [-]

cpe:2.3:a:assimp:assimp:5.1.4:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/assimp/assimp/issues/4286	Exploit Issue Tracking Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-01-20T00:00:00

Updated: 2023-01-20T00:00:00

Reserved: 2022-11-21T00:00:00

Link: CVE-2022-45748

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-01-20T19:15:16.560

Modified: 2023-01-28T03:38:19.033

Link: CVE-2022-45748

JSON object: View

Redhat Information

No data.

CWE

CWE-416