Login Sign Up

CVE-2020-28604

8.8 HIGH
Remote Code Execution

📋 TL;DR

This vulnerability in CGAL library allows remote code execution through specially crafted polygon files. Attackers can exploit out-of-bounds read and type confusion vulnerabilities in Nef polygon parsing to execute arbitrary code. Systems using CGAL for computational geometry operations are affected.

💻 Affected Systems

Products:
  • CGAL (Computational Geometry Algorithms Library)
Versions: CGAL-5.1.1 and earlier versions
Operating Systems: Linux, Unix-like systems, Windows
Default Config Vulnerable: ⚠️ Yes
Notes: Applications that use CGAL's Nef polygon parsing functionality are vulnerable when processing untrusted input files.

📦 What is this software?

Computational Geometry Algorithms Library by Cgal

View all CVEs affecting Computational Geometry Algorithms Library →

Debian Linux by Debian

View all CVEs affecting Debian Linux →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with attacker gaining complete control over the affected system, potentially leading to data theft, ransomware deployment, or lateral movement within the network.

🟠

Likely Case

Application crash leading to denial of service, with potential for limited code execution depending on application context and memory layout.

🟢

If Mitigated

Application crash without code execution if memory protections (ASLR, DEP) are effective, but still causing service disruption.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting malicious polygon files and convincing users/processes to parse them. No public exploit code has been identified.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: CGAL-5.1.2 and later

Vendor Advisory: https://www.cgal.org/

Restart Required: Yes

Instructions:

1. Update CGAL to version 5.1.2 or later. 2. Recompile applications using CGAL. 3. Restart affected services.

🔧 Temporary Workarounds

Input Validation

all

Implement strict input validation for polygon files before passing to CGAL parsing functions

Sandbox Processing

all

Process untrusted polygon files in isolated containers or sandboxed environments

🧯 If You Can't Patch

  • Implement network segmentation to isolate systems using CGAL
  • Deploy application allowlisting to prevent execution of unauthorized code

🔍 How to Verify

Check if Vulnerable:

Check CGAL version with: dpkg -l libcgal-dev (Debian/Ubuntu) or rpm -qa | grep cgal (RHEL/Fedora)

Check Version:

cgal_create_CMakeLists --version or check package manager

Verify Fix Applied:

Verify CGAL version is 5.1.2 or higher using package manager commands

📡 Detection & Monitoring

Log Indicators:

  • Application crashes when processing polygon files
  • Memory access violation errors in application logs

Network Indicators:

  • Unusual file uploads to applications using CGAL
  • Network traffic spikes during file processing

SIEM Query:

source="application.log" AND ("segmentation fault" OR "access violation" OR "out of bounds") AND "CGAL"

📊 Metadata

CVE ID: CVE-2020-28604
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-129
Published: April 18, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-28604, you might also want to check these:

CVE-2020-27483 9.9

This vulnerability in Garmin Forerunner 235 devices allows attackers to potentially execute arbitrar...

Same vulnerability type (CWE-129)
CVE-2020-27485 9.9

This vulnerability in Garmin Forerunner 235 devices allows malicious ConnectIQ store applications to...

Same vulnerability type (CWE-129)
CVE-2021-38563 9.8

This vulnerability in Foxit PDF software allows attackers to trigger memory corruption through malfo...

Same vulnerability type (CWE-129)