NordVPN 6.19.6 Denial of Service via Email Field Buffer Overflow

NordVPN 6.19.6 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the email input field. Attackers can paste a buffer of 100,000 characters into the email field during login to trigger an application crash.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1260

NordVPN 安全漏洞

NordVPN是NordVPN公司的一款虚拟专用网络服务。 NordVPN 6.19.6版本存在安全漏洞，该漏洞源于电子邮件输入字段存在缓冲区溢出，可能导致本地攻击者通过提交超长字符串使应用程序崩溃。

N/A

N/A