High severity8.4NVD Advisory· Published Jan 30, 2026· Updated Apr 15, 2026

CVE-2020-37040

Description

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project creation, potentially executing system commands like calc.exe.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.codeblocks.orgnvd
sourceforge.net/projects/codeblocksnvd
www.exploit-db.com/exploits/48594nvd
www.vulncheck.com/advisories/code-blocks-file-name-local-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000