CVE-2020-37013
Audio Playback Recorder 3.2.2 - Local Buffer Overflow (SEH)
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.4EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Jan 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious payloads and overwrite Structured Exception Handler (SEH) to execute shellcode when pasting specially crafted input into the application's input fields.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Tucows Inc. · Audio Playback RecorderReferences
https://archive.org/details/tucows_288670_Audio_Playback_Recorderhttps://web.archive.org/web/20210105222148/https://whitecr0wz.github.io/assets/img/Findings11/11-proof.gifhttps://www.exploit-db.com/exploits/48796https://www.vulncheck.com/advisories/audio-playback-recorder-local-buffer-overflow-seh