Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gonitro nitro pro vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-21796
An exploitable use-after-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause an object containing the path to a document to be destroyed and then later reused, resulting in a use-after-free vulnerability, which can l...
Gonitro Nitro Pro 13.33.2.645
Gonitro Nitro Pro 13.31.0.605
7.8
CVSSv3
CVE-2021-21797
An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a reference to a timeout object to be stored in two different places. When closed, the document will result in the reference being released tw...
Gonitro Nitro Pro 13.33.2.645
Gonitro Nitro Pro 13.31.0.605
7.8
CVSSv3
CVE-2021-21798
An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a stack variable to go out of scope, resulting in the application dereferencing a stale pointer. This can lead to code ex...
Gonitro Nitro Pro 13.33.2.645
Gonitro Nitro Pro 13.31.0.605
5.3
CVSSv3
CVE-2018-18688
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, an Incremental Saving vulnerability exists in multiple products. When an attacker uses the Incremental Saving feature to...
Code-industry Master Pdf Editor 5.1.12
Code-industry Master Pdf Editor 5.1.68
Foxitsoftware Foxit Reader 9.4
Foxitsoftware Phantompdf 8.3.9
Foxitsoftware Phantompdf
Gonitro Nitro Pro 11.0.3.173
Gonitro Nitro Reader 5.5.9.2
Iskysoft Pdf Editor 6 6.4.2.3521
Iskysoft Pdfelement6 6.8.0.3523
Iskysoft Pdfelement6 6.8.4.3921
Libreoffice Libreoffice 6.0.6.2
Libreoffice Libreoffice 6.1.3.2
Nuance Power Pdf Standard 3.0.0.17
Nuance Power Pdf Standard 3.0.0.30
Nuance Power Pdf Standard 7.0
Qoppa Pdf Studio 12.0.7
Qoppa Pdf Studio Viewer 2018 2018.0.1
Qoppa Pdf Studio Viewer 2018 2018.2.0
Soft-xpansion Perfect Pdf 10 10.0.0.1
Soft-xpansion Perfect Pdf Reader 13.0.3
Soft-xpansion Perfect Pdf Reader 13.1.5
Foxitsoftware Foxit Reader 9.1.0
5.3
CVSSv3
CVE-2018-18689
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exists in multiple products. An attacker can use /ByteRange and xref manipulations th...
Avanquest Expert Pdf Ultimate 12.0.20
Avanquest Pdf Experte Ultimate 9.0.270
Foxitsoftware Foxit Reader 9.1.0
Foxitsoftware Foxit Reader 9.2.0.9297
Foxitsoftware Foxit Reader 9.3.0.10826
Gonitro Nitro Pro 11.0.3.173
Gonitro Nitro Reader 5.5.9.2
Iskysoft Pdf Editor 6 6.4.2.3521
Iskysoft Pdfelement6 6.8.0.3523
Iskysoft Pdfelement6 6.8.4.3921
Pdfforge Pdf Architect 6.0.37
Pdfforge Pdf Architect 6.1.24.1862
Qoppa Pdf Studio 12.0.7
Qoppa Pdf Studio Viewer 2018 2018.0.1
Qoppa Pdf Studio Viewer 2018 2018.2.0
Sodapdf Soda Pdf 9.3.17
Sodapdf Soda Pdf Desktop 10.2.09
Sodapdf Soda Pdf Desktop 10.2.16.1217
Soft-xpansion Perfect Pdf 10 10.0.0.1
Soft-xpansion Perfect Pdf Reader 13.0.3
Soft-xpansion Perfect Pdf Reader 13.1.5
Tracker-software Pdf-xchange Editor 7.0.237.1
7.8
CVSSv3
CVE-2020-6112
An exploitable code execution vulnerability exists in the JPEG2000 Stripe Decoding functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when decoding sub-samples. While initializing tiles with sub-sample data, the application can miscalculate a pointer for the stri...
Gonitro Nitro Pro 13.16.2.300
Gonitro Nitro Pro 13.13.2.242
7.8
CVSSv3
CVE-2020-6115
An exploitable vulnerability exists in the cross-reference table repairing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242. While searching for an object identifier in a malformed document that is missing from the cross-reference table, the application will sa...
Gonitro Nitro Pro 13.16.2.300
Gonitro Nitro Pro 13.13.2.242
7.8
CVSSv3
CVE-2020-6116
An arbitrary code execution vulnerability exists in the rendering functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242. When drawing the contents of a page using colors from an indexed colorspace, the application can miscalculate the size of a buffer when allocatin...
Gonitro Nitro Pro 13.16.2.300
Gonitro Nitro Pro 13.13.2.242
7.8
CVSSv3
CVE-2020-6113
An exploitable vulnerability exists in the object stream parsing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when updating its cross-reference table. When processing an object stream from a PDF document, the application will perform a calculation in order ...
Gonitro Nitro Pro 13.16.2.300
Gonitro Nitro Pro 13.13.2.242
8.8
CVSSv3
CVE-2020-6146
An exploitable code execution vulnerability exists in the rendering functionality of Nitro Pro 13.13.2.242 and 13.16.2.300. When drawing the contents of a page and selecting the stroke color from an 'ICCBased' colorspace, the application will read a length from the file...
Gonitro Nitro Pro 13.16.2.300
Gonitro Nitro Pro 13.13.2.242
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »