A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
Gentoo Linux Security Advisory 202107-35 - A buffer overflow in OpenSCAD might allow remote attacker(s) to execute arbitrary code. Versions less than 2021.01 are affected.