CVE-2020-37138

CRITICAL SEVERITY

CVSS Score & Metrics

Base Score

9.8 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

10-Strike Network Inventory Explorer 9.03 contains a buffer overflow vulnerability in the file import functionality that allows remote attackers to execute arbitrary code. Attackers can craft a malicious text file with carefully constructed payload to trigger a stack-based buffer overflow and bypass data execution prevention through a ROP chain.

Vulnerability Details

Published Date

February 05, 2026

Last Modified

February 05, 2026

CWE ID

CWE-121

Source

NVD

Vendor

10-Strike Software

Product

Network Inventory Explorer

External References

https://www.10-strike.com
https://www.10-strike.com/networkinventoryexplorer/
https://www.exploit-db.com/exploits/48264
https://www.vulncheck.com/advisories/strike-network-inventory-explorer-read-from-file-buffer-overflow-sehrop

CVE-2020-37138

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment