CVE-2020-28625
Description
Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_facet() fh->boundary_entry_objects SLoop_of.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CGAL libcgal CGAL-5.1.1 contains multiple out-of-bounds read and type confusion vulnerabilities in its Nef polygon-parsing functionality that can lead to code execution via a malformed file.
Vulnerability
In CGAL libcgal version CGAL-5.1.1, the Nef polygon-parsing functionality contains multiple out-of-bounds read and type confusion vulnerabilities. Specifically, in Nef_S2/SNC_io_parser.h, the function SNC_io_parser::read_facet() does not properly validate array indices when processing fh->boundary_entry_objects SLoop_of, allowing an attacker-controlled malformed .nef3 file to trigger these flaws [1]. The vulnerability is classified as CWE-129 (Improper Validation of Array Index) [1].
Exploitation
An attacker needs no authentication or network privileges; the vulnerability is remotely exploitable with no user interaction beyond opening a crafted file [1]. By providing a specially crafted malformed .nef3 file, the attacker can trigger an out-of-bounds read and type confusion in the parsing process, potentially leading to arbitrary write primitives [1].
Impact
Successful exploitation allows an attacker to achieve arbitrary code execution with the privileges of the application using CGAL. This results in a complete compromise of confidentiality, integrity, and availability (CIA) [1]. The CVSSv3 score is 10.0 (Critical) under AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H [1].
Mitigation
A fix was released in CGAL version 5.4.1; users are advised to upgrade to at least this version [2]. The Gentoo security advisory (GLSA 202305-34) recommends upgrading to sci-mathematics/cgal-5.4.1 or later [2]. No workaround is known [2].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- CGAL Project/libcgalv5Range: CGAL-5.1.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- security.gentoo.org/glsa/202305-34mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2022/12/msg00011.htmlmitremailing-list
- talosintelligence.com/vulnerability_reports/TALOS-2020-1225mitre
News mentions
0No linked articles in our index yet.