VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 18, 2022· Updated Apr 23, 2025

CVE-2020-28622

CVE-2020-28622

Description

Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_edge() eh->incident_sface().

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An out-of-bounds read in the Nef polygon parsing of CGAL 5.1.1 leads to type confusion and code execution via a crafted file.

Vulnerability

The vulnerability resides in the Nef_S2/SNC_io_parser.h function SNC_io_parser::read_edge(), specifically in the handling of eh->incident_sface(). An out-of-bounds read occurs when parsing a specially crafted .nef3 file, which also triggers type confusion. Affected is CGAL libcgal version 5.1.1 [1]. Multiple related CVEs cover a range of similar parsing bugs in the Nef polygon functionality [1].

Exploitation

An attacker can provide a malicious .nef3 file to an application using CGAL's Nef polygon parsing. No authentication or special network position is required; the attack vector is remote and requires user interaction (e.g., opening the file). The parsing code does not properly validate array indices, leading to an out-of-bounds read that can be leveraged for type confusion [1].

Impact

Successful exploitation results in code execution with the privileges of the process using CGAL. The CVSSv3 score is 10.0, indicating a critical impact on confidentiality, integrity, and availability [1]. An attacker can gain full control over the affected system.

Mitigation

The vulnerability is patched in CGAL version 5.4.1, released in April 2023 [2]. Users should upgrade to at least this version. No known workaround exists [2]. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog.

References
  1. TALOS-2020-1225 || Cisco Talos Intelligence Group
  2. Multiple Vulnerabilities (GLSA 202305-34) — Gentoo security

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

3
  • CGAL/libcgalllm-fuzzy
    Range: <= 5.1.1
  • CGAL/CGALllm-fuzzy
    Range: 5.1.1
  • CGAL Project/libcgalv5
    Range: CGAL-5.1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.