PT-2026-5482 · Unknown · Frigate Professional
Paras Bhatia
·
Published
2026-01-30
·
Updated
2026-01-31
·
CVE-2020-37042
CVSS v3.1
8.4
High
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Frigate Professional version 3.36.0.9
Description
Frigate Professional 3.36.0.9 contains a local buffer overflow in the 'Find Computer' feature. An attacker can execute arbitrary code by overflowing the computer name input field. A malicious payload can trigger this overflow, enabling code execution, demonstrated by launching the calculator application. The vulnerable component is the 'Find Computer' feature, specifically the handling of the computer name input. The
computer name input field is susceptible to overflow.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Frigate Professional