An issue was discovered in Nsasoft US LLC SpotAuditor 5.3.5. The program can be crashed by entering 300 bytes char data into the "Key" or "Name" field while registering.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HNsasoft Spotauditor
APPNsasoft5.3.5
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2019-25336HIGH8.4ten sam produkt
SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password tool that al...
CVE-2019-25666MEDIUM6.9ten sam produkt
SpotAuditor 3.6.7 contains a local buffer overflow vulnerability in the Base64 Password Decoder component that...
CVE-2019-25596MEDIUM6.9ten sam produkt
SpotAuditor 5.2.6 contains a denial of service vulnerability in the registration dialog that allows local atta...
CVE-2019-25434MEDIUM6.7ten sam produkt
SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash ...
CVE-2019-25340MEDIUM6.7ten sam produkt
SpotAuditor 5.3.2 contains a denial of service vulnerability in its Base64 decryption feature that allows atta...