VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 18, 2022· Updated Apr 23, 2025

CVE-2020-28611

CVE-2020-28611

Description

Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_S2/SM_io_parser.h SM_io_parser<Decorator_>::read_vertex() set_first_out_edge().

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

CGAL-5.1.1 Nef polygon parser has out-of-bounds read and type confusion leading to remote code execution via crafted file.

Vulnerability

An out-of-bounds read and type confusion vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal version 5.1.1. Specifically, in the file Nef_S2/SM_io_parser.h, the function SM_io_parser::read_vertex() calls set_first_out_edge() without proper bounds checking, allowing a malformed .nef3 file to trigger an OOB read. This is classified as CWE-129 (Improper Validation of Array Index) [1].

Exploitation

An attacker can exploit this vulnerability by providing a specially crafted malformed .nef3 file to an application that uses CGAL's Nef polygon parsing. No authentication or user interaction is required beyond opening the file. The crafted input triggers an out-of-bounds read and type confusion in the parsing code, leading to potential code execution [1].

Impact

Successful exploitation can lead to arbitrary code execution with the privileges of the process parsing the file. The CVSSv3 score is 10.0, indicating critical impact on confidentiality, integrity, and availability (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H) [1].

Mitigation

The vulnerability is fixed in CGAL version 5.4.1 and later [2]. Users should upgrade to this version or newer. There is no known workaround for unpatched versions [2].

References
  1. TALOS-2020-1225 || Cisco Talos Intelligence Group
  2. Multiple Vulnerabilities (GLSA 202305-34) — Gentoo security

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

3
  • CGAL/libcgalllm-fuzzy
    Range: =5.1.1
  • CGAL/CGALllm-fuzzy
    Range: =5.1.1
  • CGAL Project/libcgalv5
    Range: CGAL-5.1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.