Buffer Overflow Vulnerability in Easy CD & DVD Cover Creator by Easy Software
CVE-2020-36940

5.1MEDIUM

Key Information:

Vendor

Tucows

Status
Easy Cd & Dvd Cover Creator
Vendor
CVE Published:
27 January 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2020-36940?

Easy CD & DVD Cover Creator version 4.13 is susceptible to a buffer overflow vulnerability in the serial number input field. This flaw allows attackers to craft a malicious 6000-byte payload that, when inserted into the serial number field, can lead to an application crash. This type of vulnerability can create a denial of service scenario, disrupting the normal operation of the software and potentially impacting user productivity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Easy CD & DVD Cover Creator 4.13

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2020-36940 - Proof of Concept

References

https://www.exploit-db.com/exploits/49337
exploit
https://www.vulncheck.com/advisories/easy-cd-dvd-cover-cr...
third-party-advisory

CVSS V4

Score:
5.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Achilles
JSON
.