CVE-2019-25340

Name of the Vulnerable Software and Affected Versions SpotAuditor version 5.3.2

Description SpotAuditor 5.3.2 contains a denial of service issue in its Base64 decryption feature. An attacker can crash the application by providing an oversized buffer. Specifically, a malformed input file containing 2000 repeated characters, when pasted into the Base64 Encrypted Password field, triggers the application crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.