Cyber Resilience

CVE-2021-47814

MediumPublic PoC

Published: 16 January 2026

Published
16 January 2026
Modified
29 January 2026
KEV Added
Patch
CVSS Score v4 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0003 10.8th percentile
Risk Priority 13 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2021-47814 is a medium-severity Classic Buffer Overflow (CWE-120) vulnerability in Nsasoft Nbmonitor. Its CVSS base score is 6.7 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 10.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2021-47814 is a denial-of-service vulnerability in NBMonitor version 1.6.8, stemming from a buffer overflow in the registration code input field, classified as CWE-120. Attackers can trigger an application crash and potential system instability by pasting a 256-character buffer into the registration key field. The vulnerability carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), highlighting its high availability impact.

The vulnerability enables remote exploitation over the network with low complexity, requiring no authentication privileges or user interaction. Unauthenticated attackers can achieve a crash of the NBMonitor application, disrupting its functionality and potentially causing broader system instability.

References include advisories and proof-of-concept exploits, such as Exploit-DB entry 49964 and a VulnCheck advisory on the NBMonitor denial-of-service PoC, along with details from nsauditor.com. No specific patches or mitigation steps are outlined in the provided references.

EU & UK References

Vulnerability details

NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the registration code input field. Attackers can paste a 256-character buffer into the registration key field to trigger an application crash and potential…

more

system instability.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Buffer overflow enables targeted application crash via exploitation (T1499.004).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2020-37199Same product: Nsasoft Nbmonitor
CVE-2020-37205Same vendor: Nsasoft
CVE-2021-47815Same vendor: Nsasoft
CVE-2020-37204Same vendor: Nsasoft
CVE-2020-37211Same vendor: Nsasoft
CVE-2020-37209Same vendor: Nsasoft
CVE-2020-37130Same vendor: Nsasoft
CVE-2020-37206Same vendor: Nsasoft
CVE-2020-37207Same vendor: Nsasoft
CVE-2020-37201Same vendor: Nsasoft

Affected Assets

nsasoft
nbmonitor
1.6.8

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly prevents the buffer overflow DoS by requiring validation of registration code input length and format to reject oversized inputs like the 256-character buffer.

prevent

Protects against or limits the impact of denial-of-service events such as remote application crashes triggered by malformed registration key inputs.

prevent

Mitigates buffer overflow effects through memory protections like stack guards, ASLR, and DEP, reducing the likelihood of successful crashes from input overflows.

References