What is CVE-2010-20112?

CVE-2010-20112 is a vulnerability in Amlib Amlibweb Library Management System, classified under Stack-based Buffer Overflow. Published 2025-08-21.

Is CVE-2010-20112 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Amlib Amlibweb Library Management System

CVE-2010-20112

Amlib’s NetOpacs webquery.dll contains a stack-based buffer overflow vulnerability triggered by improper handling of HTTP GET parameters. Specifically, the application fails to enforce bounds on input supplied to the app parameter, allowin…

Vulnerability class: Buffer Overflow

EPSS: 0.523 (98.0th percentile) — read the EPSS interpretation.

Affected products

Amlib Amlibweb Library Management System

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

Public proof-of-concept exploits

rapid7/metasploit-framework

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/w… (exploit)
www.exploit-db.com/exploits/16793 (exploit)
www.fortiguard.com/encyclopedia/ips/24002 (third-party-advisory)
advisories.checkpoint.com/defense/advisories/public/2013/cpai-2013-1344.html (third-party-advisory)
www.amlib.co.uk/product/product.aspx (product)
www.vulncheck.com/advisories/amlibweb-netopacs-stack-buffer-overflow (third-party-advisory)

Frequently asked questions

What is CVE-2010-20112?: CVE-2010-20112 is a vulnerability in Amlib Amlibweb Library Management System, classified under Stack-based Buffer Overflow. Published 2025-08-21.
Is CVE-2010-20112 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.