Vulnerability Database

322,388

Total vulnerabilities in the database

CVE-2020-36938

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory.

Published: Jan 27, 2026
Updated: Jan 28, 2026
CVE: CVE-2020-36938
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-732

Affected Software
References

No affected software listed.

https://sourceforge.net/projects/winavr/
https://www.exploit-db.com/exploits/49379
https://www.vulncheck.com/advisories/winavr-version-insecure-folder-permissions

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo