CVE-2020-28621 | Multiple code execution vulnerabilities exists in the Nef po… | CVSS 10.0 CRITICAL

Description

Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser<EW>::read_edge() eh->out_sedge().

Metadata

CVE ID: CVE-2020-28621
State: PUBLISHED
Assigner: talos
Reserved: 2020-11-13 00:00 UTC
Published: 2022-04-18 16:56 UTC
Last updated: 2025-04-23 18:36 UTC
Primary CWE: CWE-129
CWE-129: Improper Validation of Array Index
Vendor / Product: CGAL Project / libcgal
Sources: cve.org · NVD

Severity & Metrics

10.0 CRITICAL CVSS 3.0

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: PoC
Automatable: yes
Tech. Impact: total

Affected products (1)

Vendor	Product	Platform	Versions
CGAL Project	libcgal	—	CGAL-5.1.1

Weakness (CWE)

CWE	Source	Description
CWE-129	cna	CWE-129: Improper Validation of Array Index

CVSS scores (1)

Score	Severity	Version	Source	Vector
10.0	CRITICAL	3.0	cna	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

References (3)

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1225
[debian-lts-announce] 20221206 [SECURITY] [DLA 3226-1] cgal security update https://lists.debian.org/debian-lts-announce/2022/12/msg00011.html
GLSA-202305-34 https://security.gentoo.org/glsa/202305-34