ГлавнаяУязвимости → CVE-2025-57107
7.1высокая

CVE-2025-57107

Описание

Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap buffer overflow vulnerability in vtkGLTFDocumentLoader. When processing specially crafted GLTF files, the copy constructor of Accessor objects fails to properly validate buffer boundaries before performing memory read operations.

Затрагиваемое ПО
Vtk Vtk
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
Источники
https://gitlab.kitware.com/vtk/vtk/-/issues/19732