{"cve_id":"CVE-2018-25213","summary":"Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH chain overwrite and inject shellcode through the DNS Query field to achieve code execution with application privileges.","cvss":8.4,"cvss_version":3.0,"cvss_v2":null,"cvss_v3":8.4,"epss":0.00016,"ranking_epss":0.03708,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["http://www.nsauditor.com","http://www.nsauditor.com/downloads/nsauditor_setup.exe","https://www.exploit-db.com/exploits/46005","https://www.vulncheck.com/advisories/nsauditor-local-seh-buffer-overflow"],"published_time":"2026-03-26T14:16:04","cpes":["cpe:2.3:a:nsasoft:nsauditor:3.0.28"]}