Vulnerability Details : CVE-2020-35634

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser<EW>::read_sface() sfh->boundary_entry_objects Sloop_of. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger this vulnerability.

Published 2021-08-30 18:15:08

Updated 2023-05-30 06:15:17

Source Talos

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2020-35634

Probability of exploitation activity in the next 30 days: 0.48%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 73 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2020-35634

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	nvd@nist.gov
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
10.0	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H	3.9	6.0	talos-cna@cisco.com
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	nvd@nist.gov
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-35634

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.
Assigned by:
- nvd@nist.gov (Secondary)
- talos-cna@cisco.com (Primary)

References for CVE-2020-35634

https://security.gentoo.org/glsa/202305-34

CGAL: Multiple Vulnerabilities (GLSA 202305-34) — Gentoo security

CVEs referencing this url
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1225

TALOS-2020-1225 || Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
Exploit;Third Party Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2022/12/msg00011.html

[SECURITY] [DLA 3226-1] cgal security update
Mailing List;Third Party Advisory

CVEs referencing this url

Products affected by CVE-2020-35634

Debian » Debian Linux » Version: 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Matching versions
Cgal » Computational Geometry Algorithms Library » Version: 5.1.1
cpe:2.3:a:cgal:computational_geometry_algorithms_library:5.1.1:*:*:*:*:*:*:*
Matching versions