CVE-2020-37124 HIGH

CVE-2020-37124: B64dec 1.1.2 - Buffer Overflow (SEH Overflow + Egg Hunter)

Vendor 4Mhz
Product B64dec
Weakness CWE-121
Published February 5, 2026
Last update February 6, 2026

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

B64dec 1.1.2 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) with crafted input. Attackers can leverage an egg hunter technique and carefully constructed payload to inject and execute malicious code during base64 decoding process.

Key dates

02Disclosure timeline

February 5, 2026 CVE published
February 6, 2026 Record updated