CVE-2020-28594: 
Homebrew vulnerability analysis and mitigation

A use-after-free vulnerability exists in the 3MFImporter::handleendmodel() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit 4b040b856). A specially crafted 3MF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability ([Talos Intelligence](https://talosintelligence.com/vulnerabilityreports/TALOS-2020-1218), NVD).

The vulnerability exists in PrusaSlicer's handling of 3MF files, specifically in the 3MFImporter::handleendmodel() function. When processing a specially crafted 3MF file, the function can attempt to access memory after it has been freed, leading to potential code execution. The vulnerability has been assigned a CVSS score of 8.8 (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) indicating high severity ([Talos Intelligence](https://talosintelligence.com/vulnerabilityreports/TALOS-2020-1218)).

If successfully exploited, this vulnerability could allow an attacker to execute arbitrary code on the affected system through a specially crafted 3MF file. The high CVSS score indicates potential for significant impact on the confidentiality, integrity, and availability of the affected system (Talos Intelligence).

The vulnerability affects PrusaSlicer version 2.2.0 and Master (commit 4b040b856). Users should update to a patched version of the software when available (Talos Intelligence).