CNNVD-202510-4426 Information

Oct 31, 2025 cve

CNNVD ID

CNNVD-202510-4426

CVE-2025-57106

CNNVD Published: 2025-10-31

Description (Chinese)

Kitware VTK是Kitware开源的一款3D图像生成软件。 Kitware VTK 9.5.0及之前版本存在安全漏洞，该漏洞源于vtkGLTFDocumentLoader中的BufferDataExtractionWorker模板函数处理GLTF访问器数据时存在缓冲区溢出。

Description (English)

Kitware VTK is a 3D image generation software for the Kitware open source. There is a security gap in Kitware VTK 9.5.0 and previous versions, which stems from the buffer spill in the BufferDataExtrationWorker template function of vtkGLTFDocumentLoader when processing GLTF access data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kitware

Published

2025-10-31

Last Modified

2026-02-24

References

https://gitlab.kitware.com/vtk/vtk/-/issues/19733 https://gitlab.kitware.com/vtk/vtk/-/issues/19734

Share on: