Cyber Resilience

CVE-2020-37206

MediumPublic PoC

Published: 11 February 2026

Published
11 February 2026
Modified
26 February 2026
KEV Added
Patch
CVSS Score v4 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0001 2.6th percentile
Risk Priority 9 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-37206 is a medium-severity Classic Buffer Overflow (CWE-120) vulnerability in Nsasoft Sharealarmpro. Its CVSS base score is 4.6 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 2.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2020-37206 is a denial-of-service vulnerability in ShareAlarmPro, a network access control application. The flaw stems from a buffer overflow (CWE-120) in the registration key handling, where the application crashes when an oversized input, such as a 1000-character payload, is supplied to the registration key field. This issue received a CVSS v3.1 base score of 7.5, reflecting high severity due to its impact on availability.

Any remote attacker can exploit this vulnerability without authentication, privileges, or user interaction, as it is network-accessible with low attack complexity (AV:N/AC:L/PR:N/UI:N). By pasting the oversized payload into the registration key field, the attacker triggers an application crash, resulting in high availability impact (A:H) with no effects on confidentiality or integrity.

Advisories and related resources, including an exploit demonstration on Exploit-DB (https://www.exploit-db.com/exploits/47859) and a VulnCheck advisory (https://www.vulncheck.com/advisories/sharealarmpro-advanced-network-access-control-key-denial-of-service), detail the issue; the vendor site (http://www.nsauditor.com/) may provide patching guidance.

EU & UK References

Vulnerability details

ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload to trigger an application crash when pasted into the registration key field.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Buffer overflow in network-accessible registration handler directly enables application crash via oversized input, mapping to endpoint DoS through vulnerability exploitation.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2020-37205Same vendor: Nsasoft
CVE-2021-47815Same vendor: Nsasoft
CVE-2020-37204Same vendor: Nsasoft
CVE-2020-37211Same vendor: Nsasoft
CVE-2020-37209Same vendor: Nsasoft
CVE-2020-37199Same vendor: Nsasoft
CVE-2020-37130Same vendor: Nsasoft
CVE-2020-37207Same vendor: Nsasoft
CVE-2020-37201Same vendor: Nsasoft
CVE-2020-37212Same vendor: Nsasoft

Affected Assets

nsasoft
sharealarmpro
all versions

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Rejects the oversized registration-key input before it reaches the vulnerable buffer-handling code, directly blocking the buffer overflow crash.

prevent

Requires prompt application of vendor patches that correct the CWE-120 flaw in registration-key processing.

prevent

Applies memory-protection mechanisms that can contain or prevent exploitation of the buffer overflow that leads to the application crash.

References