← Voltar para CVEs
CVE-2020-37171
MEDIUM6.2
Descricao
TapinRadio 2.12.3 contains a denial of service vulnerability in the application proxy username configuration that allows local attackers to crash the application. Attackers can overwrite the username field with 10,000 bytes of arbitrary data to trigger an application crash and prevent normal program functionality.
Detalhes CVE
Pontuacao CVSS v3.16.2
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado2/7/2026
Ultima modificacao2/19/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
raimersoft:tapinradio
Fraquezas (CWE)
CWE-120
Referencias
https://www.exploit-db.com/exploits/48013(disclosure@vulncheck.com)
https://www.raimersoft.com/php/tapinradio.php(disclosure@vulncheck.com)
https://www.vulncheck.com/advisories/tapinradio-username-denial-of-service(disclosure@vulncheck.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.