CVE-2025-70071 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.9 MEDIUM	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 30%

Debian Releases

Debian Product

Codename

assimp

bookworm	no-dsa
bullseye	no-dsa
forky	vulnerable
sid	vulnerable
trixie	no-dsa

Amazon Linux Releases

Amazon Package

Release

qt5-qt3d

Amazon Linux 2

0:5.15.3-1.amzn2.0.9

fixed

qt5-qt3d-debuginfo

Amazon Linux 2

0:5.15.3-1.amzn2.0.9

fixed

qt5-qt3d-devel

Amazon Linux 2

0:5.15.3-1.amzn2.0.9

fixed

qt5-qt3d-examples

Amazon Linux 2

0:5.15.3-1.amzn2.0.9

fixed

Common Weakness Enumeration

CWE-400 - Uncontrolled Resource Consumption
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References

http://assimp.com

https://gist.github.com/GunP4ng/6d80919905037929ce9266ccd207b9ea

https://gist.github.com/GunP4ng/6d80919905037929ce9266ccd207b9ea