Critical severity9.8NVD Advisory· Published Feb 5, 2026· Updated Apr 15, 2026

CVE-2020-37126

Description

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler (SEH) registers. Attackers can exploit the vulnerability by crafting a malicious Unicode input that triggers an access violation and potentially execute arbitrary code.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.drive-software.comnvd
www.exploit-db.com/exploits/48314nvd
www.vulncheck.com/advisories/free-desktop-clock-x-venetian-blinds-zipper-unicode-stack-overflow-sehnvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000