VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 18, 2022· Updated Apr 23, 2025

CVE-2020-28631

CVE-2020-28631

Description

Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sedge() seh->source().

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Out-of-bounds read in CGAL-5.1.1's Nef polygon parser leads to potential code execution.

Vulnerability

An out-of-bounds read vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. Specifically, in the SNC_io_parser::read_sedge() function within SNC_io_parser.h, the parser fails to properly validate array indices when reading the seh->source() field, leading to an OOB read and type confusion. This can be triggered by a specially crafted malformed .nef3 file [1].

Exploitation

An attacker can exploit this vulnerability by providing a malicious .nef3 file to an application that uses the CGAL library to parse Nef polygons. No authentication or user interaction is required; the exploit can occur remotely if the application processes untrusted input. The attacker does not need any special network position beyond the ability to supply the file [1].

Impact

Successful exploitation of the OOB read and type confusion can lead to arbitrary code execution in the context of the process using CGAL. The CVSSv3 score is 10.0, indicating a critical impact on confidentiality, integrity, and availability [1].

Mitigation

The vulnerability is fixed in CGAL version 5.4.1 and later [2]. Users should upgrade to this version or later. As of the publication date, no known workaround exists, and the issue is not known to be listed in CISA's KEV [2].

References
  1. TALOS-2020-1225 || Cisco Talos Intelligence Group
  2. Multiple Vulnerabilities (GLSA 202305-34) — Gentoo security

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • CGAL/libcgalllm-fuzzy
    Range: = 5.1.1
  • CGAL Project/libcgalv5
    Range: CGAL-5.1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.