Medium severity6.2NVD Advisory· Published May 16, 2026

CVE-2020-37234

Description

Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to trigger a denial of service condition.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.internetdownloadmanager.comnvd
www.internetdownloadmanager.com/download.htmlnvd
www.exploit-db.com/exploits/49083nvd
www.vulncheck.com/advisories/internet-download-manager-scheduler-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.403
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000