CVE-2020-37001

HighPublic PoC

Published: 29 January 2026

Published

29 January 2026

Modified

15 April 2026

KEV Added

—

Patch

—

CVSS Score 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0002 5.5th percentile

Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-37001 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability. Its CVSS base score is 8.4 (High).

Operationally, ranked at the 5.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Threat & Defense at a Glance

What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-10 Information Input Validation good match

prevent

Validating the 'Archive To' input field prevents buffer overflows by enforcing bounds and format checks on user-supplied data.

SI-16 Memory Protection good match

prevent

Memory protections like stack canaries, ASLR, and DEP thwart SEH overwrites and egghunter techniques used in the buffer overflow exploitation.

SI-2 Flaw Remediation good match

prevent

Timely flaw remediation through patching addresses the specific buffer overflow vulnerability in the Pack File feature of Frigate Professional 3.36.0.9.

NVD Description

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler…

(SEH) and uses an egghunter technique to execute a reverse shell payload.

Deeper analysisAI

CVE-2020-37001 is a local buffer overflow vulnerability (CWE-121) in Frigate Professional version 3.36.0.9, specifically within the Pack File feature. The issue arises from overflowing the 'Archive To' input field, which enables attackers to overwrite the Structured Exception Handler (SEH) and utilize an egghunter technique to execute arbitrary code, such as a reverse shell payload. The vulnerability carries a CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) and was published on 2026-01-29.

Local attackers can exploit this vulnerability with low attack complexity, requiring no privileges or user interaction. Exploitation allows achievement of high impacts on confidentiality, integrity, and availability through arbitrary code execution, including establishing a reverse shell on the affected system.

Advisories, including those from VulnCheck and Exploit-DB (exploit 48688), detail the SEH overwrite and egghunter mechanics in the Pack File feature. An archived Frigate website is also referenced, but no specific patches or mitigation steps are described in the available references.

Details

CWE(s): CWE-121

CVEs Like This One

CVE-2025-70219Shared CWE-121

CVE-2026-29972Shared CWE-121

CVE-2025-60690Shared CWE-121

CVE-2026-4444Shared CWE-121

CVE-2025-61128Shared CWE-121

CVE-2019-25319Shared CWE-121

CVE-2026-22923Shared CWE-121

CVE-2025-69195Shared CWE-121

CVE-2020-37124Shared CWE-121

CVE-2026-22904Shared CWE-121

References

https://web.archive.org/web/20171116000613/http://www.frigate3.com/index.php
disclosure@vulncheck.com
https://www.exploit-db.com/exploits/48688
disclosure@vulncheck.com
https://www.vulncheck.com/advisories/frigate-professional-pack-file-buffer-overflow-seh-egghunter
disclosure@vulncheck.com