Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gonitro vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-5048
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would need to open the malicious file.
Gonitro Nitropdf 12.2.1.522
6.8
CVSSv2
CVE-2019-5053
An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a use-after-free condition. An attacker can craft a malicious PDF to trigger this vulnerability.
Gonitro Nitropdf 12.2.1.522
5.8
CVSSv2
CVE-2020-10222
npdf.dll in Nitro Pro prior to 13.13.2.242 is vulnerable to Heap Corruption at npdf!nitro::get_property+2381 via a crafted PDF document.
Gonitro Nitro Pro
4.3
CVSSv2
CVE-2019-19819
The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content.
Gonitro Nitropdf 12.0.0.112
6.8
CVSSv2
CVE-2019-5045
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would nee...
Gonitro Nitropdf 12.12.1.522
6.8
CVSSv2
CVE-2019-5046
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would nee...
Gonitro Nitropdf 12.12.1.522
6.8
CVSSv2
CVE-2019-5050
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would need to open the malicious file.
Gonitro Nitropdf 12.12.1.522
4.6
CVSSv2
CVE-2019-18958
Nitro Pro prior to 13.2 creates a debug.log file in the directory where a .pdf file is located, if the .pdf document was produced by an OCR operation on the JPEG output of a scanner. Reportedly, this can have a security risk if debug.log is later edited and then executed.
Gonitro Nitro Pro
4.3
CVSSv2
CVE-2017-7950
Nitro Pro 11.0.3 and previous versions allows remote malicious users to cause a denial of service (application crash) via a crafted PCX file.
Gonitro Nitro Pro
1 EDB exploit
4.4
CVSSv2
CVE-2013-2773
Nitro PDF 8.5.0.26: A specially crafted DLL file can facilitate Arbitrary Code Execution
Gonitro Nitropdf 8.5.0.26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »