High severity7.8NVD Advisory· Published Feb 24, 2021· Updated Jun 17, 2026
CVE-2020-28599
CVE-2020-28599
Description
A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Openscad/openscaddescription
Patches
Vulnerability mechanics
References
5- talosintelligence.com/vulnerability_reports/TALOS-2020-1223nvdExploitThird Party Advisory
- www.talosintelligence.com/vulnerability_reports/TALOS-2020-1224nvdExploitThird Party Advisory
- security.gentoo.org/glsa/202107-35nvdThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFXQZK6BAYARVVWBBXDKPVPN3N77PPDX/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRHYUWXQ7QQIC6TXDYYLYFFF7B7L3EBD/nvd
News mentions
0No linked articles in our index yet.