com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy() that may lead to arbitrary code execution.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25412
Reference (s):
- https://sourceforge.net/p/gnuplot/bugs/2303/