GCVE - cpe:2.3:a:nsasoft:nsauditor_spotauditor:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:nsasoft:nsauditor_spotauditor:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Nsasoft (`60920eb3-36b1-556f-89ea-127a327b24d4`)
Product	Nsauditor Spotauditor (`e608de09-999b-54b2-be93-5f746846814f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-25434`	vulnerable	2026-06-03 14:40:18.483461	SpotAuditor 5.3.1.0 Denial of Service via Registration Name Field HIGH (7.5) SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting excessive data in the registration name field. Attackers can enter a large string of characters (5000 bytes or more) in the name field during registration to trigger an unhandled exception that crashes the application. Published: 2026-02-20T22:54:47.430Z Updated: 2026-04-07T14:03:59.612Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/47494 http://www.nsauditor.com https://www.vulncheck.com/advisories/spotauditor-denial-of-service-via-registration-name-field	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-25340`	vulnerable	2026-06-03 14:40:18.370909	SpotAuditor 5.3.2 - 'Base64' Denial Of Service HIGH (7.5) SpotAuditor 5.3.2 contains a denial of service vulnerability in its Base64 decryption feature that allows attackers to crash the application by supplying an oversized buffer. Attackers can generate a malformed input file with 2000 repeated characters to trigger an application crash when pasted into the Base64 Encrypted Password field. Published: 2026-02-12T22:48:48.045Z Updated: 2026-03-05T01:26:12.041Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/47719 http://www.nsauditor.com/ https://www.vulncheck.com/advisories/spotauditor-base-denial-of-service	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-25336`	vulnerable	2026-06-03 14:40:18.363871	SpotAuditor 5.3.2 - 'Base64' Local Buffer Overflow (SEH) HIGH (8.4) SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password tool that allows attackers to execute arbitrary code by crafting a malicious payload. Attackers can generate a specially crafted Base64 encoded payload to trigger a Structured Exception Handler (SEH) overwrite and execute shellcode on the vulnerable system. Published: 2026-02-12T22:48:45.169Z Updated: 2026-03-05T01:26:10.539Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/47759 http://www.nsauditor.com/ https://www.exploit-db.com/exploits/47719 https://www.vulncheck.com/advisories/spotauditor-base-local-buffer-overflow-seh	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.