High severity8.4NVD Advisory· Published Jan 30, 2026· Updated Apr 15, 2026

CVE-2020-37031

Description

Simple Startup Manager 1.17 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory through the 'File' input parameter. Attackers can craft a malicious payload with 268 bytes to trigger code execution, bypassing DEP and overwriting memory addresses to launch calc.exe.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ashkon.com/startup_manager.htmlnvd
www.exploit-db.com/exploits/48678nvd
www.vulncheck.com/advisories/simple-startup-manager-file-local-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000