High severity7.8NVD Advisory· Published May 10, 2021· Updated Jun 17, 2026
CVE-2020-28600
CVE-2020-28600
Description
An out-of-bounds write vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/openscad&distro=openSUSE%20Leap%2015.2pkg:rpm/suse/openscad&distro=SUSE%20Package%20Hub%2015%20SP2
< 2019.05-lp152.2.3.1+ 1 more
- (no CPE)range: < 2019.05-lp152.2.3.1
- (no CPE)range: < 2019.05-bp152.2.3.1
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2020-1224nvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.