A vulnerability was found in Assimp up to 6.0.4 . It has been classified as problematic . Affected by this vulnerability is the function Assimp::glTFImporter::ImportMeshes of the file glTFImporter.cpp of the component glTFImporter . This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2026-10198 . The attack is restricted to local execution. Moreover, an exploit is present. The project tagged the reported issue as bug.