Denial of Service Risk in Frigate Application from Vendor Issues
CVE-2020-37039

4.6MEDIUM

Key Information:

Vendor: Winfrigate
Status: Frigate 2
Vendor: CVE Published:; 30 January 2026

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2020-37039?

Frigate 2.02 is susceptible to a denial of service vulnerability that allows malicious actors to crash the application. By sending oversized input—specifically a payload of 8000 repeated characters—through the command line interface, an attacker can effectively render the application non-functional. This vulnerability poses a significant risk to users of Frigate 2.02, as it can lead to disruption of services and potential data loss.

Affected Version(s)

Frigate 2 2.02

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2020-37039 - Proof of Concept

References

https://www.exploit-db.com/exploits/48613

exploit

https://web.archive.org/web/20190623044943/http://www.fri...

product

https://www.vulncheck.com/advisories/frigate-denial-of-se...

third-party-advisory

CVSS V4

Score:

4.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 30, 2026
👾
Exploit known to exist
Jan 30, 2026
Vulnerability published
Jan 30, 2026
Vulnerability Reserved
Jan 28, 2026

Credit

Paras Bhatia

CVE-2020-37039 Data

JSON

Winfrigate

Badges

What is CVE-2020-37039?

Affected Version(s)

Exploit Proof of Concept (PoC)

References

CVSS V4

Timeline

Credit