Critical severity9.8NVD Advisory· Published Jan 30, 2026· Updated Apr 15, 2026
CVE-2020-37050
CVE-2020-37050
Description
Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading mechanism, potentially enabling remote code execution.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- download.cnet.com/quick-player/3000-2168_4-10871417.htmlnvd
- web.archive.org/web/20201022211753/https://whitecr0wz.github.io/posts/Exploiting-Quick-Player/nvd
- web.archive.org/web/20210105222205/https://whitecr0wz.github.io/assets/img/Findings6/18.gifnvd
- www.exploit-db.com/exploits/48564nvd
- www.vulncheck.com/advisories/quick-player-ml-buffer-overflownvd
News mentions
0No linked articles in our index yet.