CVE-2020-37028

HIGH 8.4

Socusoft Photo to Video Converter Professional 8.07 - 'Output Folder' Buffer Overflow

CVSS Score

8.4

EPSS Score

0.0%

EPSS Percentile

0th

Socusoft Photo to Video Converter Professional 8.07 contains a local buffer overflow vulnerability in the 'Output Folder' input field that allows attackers to execute arbitrary code. Attackers can craft a malicious payload and paste it into the output folder field to trigger a stack-based buffer overflow and potentially execute shellcode.

CWE	CWE-120
Vendor	socusoft
Product	photo to video converter professional
Published	Jan 30, 2026
Last Updated	Mar 5, 2026

Stay Ahead of the Next One

Get instant alerts for socusoft photo to video converter professional

Be the first to know when new high vulnerabilities affecting socusoft photo to video converter professional are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

SOCUSOFT / Photo to Video Converter Professional

8.07

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/48691 web.archive.org: https://web.archive.org/web/20190314225058/http://www.dvd-photo-slideshow.com/photo-to-video-converter.html vulncheck.com: https://www.vulncheck.com/advisories/socusoft-photo-to-video-converter-professional-output-folder-buffer-overflow

Credits

MasterVlad