A vulnerability identified as critical has been detected in Assimp up to 6.0.4 . Affected is the function HL1MDLLoader::extract_anim_value of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader . Performing a manipulation of the argument num.total results in heap-based buffer overflow. This vulnerability is cataloged as CVE-2026-10231 . The attack must be initiated from a local position. Furthermore, there is an exploit available. The project tagged the reported issue as bug.