High severity8.4NVD Advisory· Published Jan 29, 2026· Updated Apr 15, 2026

CVE-2020-37001

Description

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler (SEH) and uses an egghunter technique to execute a reverse shell payload.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

web.archive.org/web/20171116000613/http://www.frigate3.com/index.phpnvd
www.exploit-db.com/exploits/48688nvd
www.vulncheck.com/advisories/frigate-professional-pack-file-buffer-overflow-seh-egghunternvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000