Vulnerabilities ›

CVE-2020-37130

High ⚡ Exploit Available

CWE-120 — Weakness Type

                    Published: Feb 5, 2026                      ·  Modified: Feb 28, 2026                      ·  Source: NVD                

CVSS v3

7.5

🔗 NVD Official

📄 Description (English)

Nsauditor 3.2.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can create a malicious payload of 1000 bytes of repeated characters to trigger an application crash when pasted into the registration name field.

🤖 AI Executive Summary

Nsauditor 3.2.0.0 contains a buffer overflow vulnerability (CWE-120) in the registration name input field that allows unauthenticated attackers to cause denial of service by submitting oversized payloads. The vulnerability is easily exploitable with publicly available exploits and affects network auditing operations across Saudi organizations. Immediate patching is critical for organizations relying on Nsauditor for network security assessments.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: Apr 30, 2026 08:33

🇸🇦 Saudi Arabia Impact Assessment

This vulnerability primarily impacts Saudi government agencies (NCA, NCSC), banking sector (SAMA-regulated institutions), and telecommunications companies (STC, Mobily) that utilize Nsauditor for network vulnerability assessments and compliance auditing. The DoS capability could disrupt critical security monitoring operations during active threat investigations or compliance audits. Energy sector organizations (ARAMCO, SEC) conducting network security assessments are also at risk. The vulnerability's ease of exploitation makes it attractive for disruption-focused attacks against Saudi critical infrastructure security operations.

🏢 Affected Saudi Sectors

Government (NCA, NCSC) Banking (SAMA-regulated institutions) Telecommunications (STC, Mobily) Energy (ARAMCO, SEC) Healthcare Critical Infrastructure

🎯 MITRE ATT&CK Techniques

T1499 - Endpoint Denial of Service T1499.004 - Application Exhaustion Flood T1203 - Exploitation for Client Execution

⚖️ Saudi Risk Score (AI)

6.8

/ 10.0

🔧 Remediation Steps (English)

1. IMMEDIATE ACTIONS:

   - Disable or isolate Nsauditor 3.2.0.0 instances from untrusted networks

   - Restrict access to the registration interface using network segmentation

   - Implement input validation at network boundary to reject payloads >256 bytes for registration fields



2. PATCHING:

   - Upgrade Nsauditor to version 3.2.1.0 or later immediately

   - Verify patch deployment across all instances in inventory

   - Test patched versions in non-production environment first



3. COMPENSATING CONTROLS:

   - Deploy WAF/IPS rules to block requests with >1000 character payloads to registration endpoints

   - Monitor application logs for repeated failed registration attempts

   - Implement rate limiting on registration API endpoints



4. DETECTION:

   - Alert on registration requests containing >500 consecutive identical characters

   - Monitor for application crashes correlated with registration field submissions

   - Log all registration attempts with payload size metrics

🔧 خطوات المعالجة (العربية)

1. الإجراءات الفورية:

   - تعطيل أو عزل نسخ Nsauditor 3.2.0.0 عن الشبكات غير الموثوقة

   - تقييد الوصول إلى واجهة التسجيل باستخدام تقسيم الشبكة

   - تطبيق التحقق من صحة المدخلات لرفض الحمولات >256 بايت



2. التصحيح:

   - ترقية Nsauditor إلى الإصدار 3.2.1.0 أو أحدث فوراً

   - التحقق من نشر التصحيح عبر جميع النسخ

   - اختبار النسخ المصححة في بيئة غير الإنتاج أولاً



3. الضوابط البديلة:

   - نشر قواعد WAF/IPS لحجب الطلبات >1000 حرف

   - مراقبة سجلات التطبيق لمحاولات التسجيل الفاشلة المتكررة

   - تطبيق تحديد معدل على نقاط نهاية API للتسجيل



4. الكشف:

   - تنبيهات على طلبات التسجيل التي تحتوي على >500 حرف متطابق متتالي

   - مراقبة انهيارات التطبيق المرتبطة بحقول التسجيل

   - تسجيل جميع محاولات التسجيل مع مقاييس حجم الحمولة

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.12.6.1 - Management of technical vulnerabilities ECC 2024 A.14.2.1 - Secure development policy ECC 2024 A.12.2.1 - Monitoring and logging

🔵 SAMA CSF

SAMA CSF ID.BE-5.1 - Cybersecurity risk management SAMA CSF PR.IP-12 - Software, firmware, and information integrity mechanisms SAMA CSF DE.CM-1 - The network is monitored to detect potential cybersecurity events

🟡 ISO 27001:2022

ISO 27001:2022 A.12.2.1 - Monitoring and logging ISO 27001:2022 A.14.2.1 - Secure development policy ISO 27001:2022 A.12.6.1 - Management of technical vulnerabilities

🔗 References & Sources 3

🔗

http://www.nsauditor.com

disclosure@vulncheck.com

Product

🔗

https://www.exploit-db.com/exploits/48286

disclosure@vulncheck.com

Exploit Third Party Advisory VDB Entry

🔗

https://www.vulncheck.com/advisories/nsauditor-name-denial-of-service

disclosure@vulncheck.com

Third Party Advisory

📦 Affected Products / CPE 1 entries

nsasoft:nsauditor

📊 CVSS Score

7.5

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityN — None / Network

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.5

CWECWE-120

EPSS0.04%

Exploit ✓ Yes

Patch ✓ Yes

Published 2026-02-05

Source Feed nvd

🇸🇦 Saudi Risk Score

6.8

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

exploit-available CWE-120

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2020-37130

💬 Comments

Introduce Yourself

Sign In Required