216.73.217.64

CVE-2020-37040

· Published 30/01/2026 23:16 · Modified 30/01/2026 23:16

Labels: CVE-2020-37040 2026-01-30CVE-2020-37040CWE-120[email protected]

Essential information

Published
30/01/2026 23:16
Modified
30/01/2026 23:16
Author
Creator
CVSS
8.4 HIGH (v3) 8.4 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project creation, potentially executing system commands like calc.exe.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
code blocks / code blocks cpe:2.3:a:code_blocks:code_blocks:17.12:*:*:*:*:*:*:*

References