CVE-2020-37013

HIGH 8.4

Audio Playback Recorder 3.2.2 - Local Buffer Overflow (SEH)

CVSS Score

8.4

EPSS Score

0.0%

EPSS Percentile

6th

Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious payloads and overwrite Structured Exception Handler (SEH) to execute shellcode when pasting specially crafted input into the application's input fields.

CWE	CWE-121
Vendor	tucows inc.
Product	audio playback recorder
Published	Jan 29, 2026
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for tucows inc. audio playback recorder

Be the first to know when new high vulnerabilities affecting tucows inc. audio playback recorder are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Tucows Inc. / Audio Playback Recorder

3.2.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/48796 web.archive.org: https://web.archive.org/web/20210105222148/https://whitecr0wz.github.io/assets/img/Findings11/11-proof.gif archive.org: https://archive.org/details/tucows_288670_Audio_Playback_Recorder vulncheck.com: https://www.vulncheck.com/advisories/audio-playback-recorder-local-buffer-overflow-seh

Credits

Felipe Winsnes