Security Advisory

CVE-2025-57108

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-31 00:00:00

Last updated 2025-10-31 19:07:13

Assigner mitre

State PUBLISHED

Description

Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap use-after-free vulnerability in vtkGLTFDocumentLoader. The vulnerability manifests during mesh object copy operations where vector members are accessed after the underlying memory has been freed, specifically when handling GLTF files with corrupted or invalid mesh reference structures.

← Browse all CVEs View on cve.org ↗