CVE-2020-13995

EPSS 3.74% · P88 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-13995

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable (sBuffer) leads to a Write-What-Where outcome. Writing beyond sBuffer will clobber most global variables until reaching a pointer such as DES_info or image_info. By controlling that pointer, one achieves an arbitrary write when its fields are assigned. The data written is from a potentially untrusted NITF file in the form of an integer. The attacker can gain control of the instruction pointer.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

U.S. Air Force Sensor Data Management System extract75 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

U.S. Air Force Sensor Data Management System是美国U.S. Air Force公司的一款游戏公司的数据管理系统。 U.S. Air Force Sensor Data Management System extract75存在缓冲区错误漏洞，该漏洞源于全局变量（sBuffer）的溢出会导致Write-What-Where写入结果。超出sBuffer的写入将破坏大多数全局变量，直到到达诸如DES_info或image_info之类的指针为止。通过控制该指针，可

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-13995

#	POC Description	Source Link	Shenlong Link
1	None	https://github.com/dbrumley/extract75-cve-2020-13995	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-13995

请登录查看更多情报信息。

Same Patch Batch · n/a · 2020-09-25 · 84 CVEs total

CVE-2020-7735	6.6 MEDIUM	Command Injection
CVE-2020-15370		Brocade Fabric OS 日志信息泄露漏洞
CVE-2020-15369		Brocade Fabric OS 安全漏洞
CVE-2018-6449		Brocade Fabric OS 跨站脚本漏洞
CVE-2020-25132		Observium Professional Enterprise Community SQL注入漏洞
CVE-2019-16211		Broadcom Brocade SANnav 安全漏洞
CVE-2020-15394		ZOHO ManageEngine Applications Manager SQL注入漏洞
CVE-2020-15521		ZOHO ManageEngine Applications Manager 跨站脚本漏洞
CVE-2019-11556		Pagure 跨站脚本漏洞
CVE-2020-26098		cPanel 安全漏洞
CVE-2018-6447		Brocade Fabric OS 跨站脚本漏洞
CVE-2018-6448		Brocade Fabric OS 安全漏洞
CVE-2020-15371		Brocade Fabric OS 代码注入漏洞
CVE-2020-15372		Brocade Fabric OS 安全漏洞
CVE-2020-15373		Brocade Fabric OS 缓冲区错误漏洞
CVE-2020-15374		Brocade Fabric OS 输入验证错误漏洞
CVE-2020-5930		F5 BIG-IP 安全漏洞
CVE-2020-5929		F5 BIG-IP 安全漏洞
CVE-2020-25130		Observium Professional Enterprise Community SQL注入漏洞
CVE-2020-25131		Observium Professional Enterprise Community 跨站脚本漏洞

Showing top 20 of 84 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-13995

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-13995

I. Basic Information for CVE-2020-13995

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-13995

III. Intelligence Information for CVE-2020-13995

Same Patch Batch · n/a · 2020-09-25 · 84 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-13995

Leave a comment