Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nitropdf vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2013-3552
Nitro Pro 7.5.0.29 and previous versions and Nitro Reader 2.5.0.45 and previous versions allow remote malicious users to execute arbitrary code via a crafted PDF file.
Nitropdf Nitro Reader
Nitropdf Nitro Pro
7.8
CVSSv3
CVE-2013-3553
Nitro Pro 7.5.0.22 and previous versions and Nitro Reader 2.5.0.36 and previous versions allow remote malicious users to execute arbitrary code via a crafted PDF file.
Nitropdf Nitro Reader
Nitropdf Nitro Pro
5.5
CVSSv3
CVE-2019-19819
The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content.
Gonitro Nitropdf 12.0.0.112
7.8
CVSSv3
CVE-2013-2773
Nitro PDF 8.5.0.26: A specially crafted DLL file can facilitate Arbitrary Code Execution
Gonitro Nitropdf 8.5.0.26
7.8
CVSSv3
CVE-2019-5045
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would nee...
Gonitro Nitropdf 12.12.1.522
7.8
CVSSv3
CVE-2019-5047
An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability.
Gonitro Nitropdf 12.2.1.522
7.8
CVSSv3
CVE-2019-5048
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would need to open the malicious file.
Gonitro Nitropdf 12.2.1.522
7.8
CVSSv3
CVE-2019-5050
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would need to open the malicious file.
Gonitro Nitropdf 12.12.1.522
7.8
CVSSv3
CVE-2019-5046
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would nee...
Gonitro Nitropdf 12.12.1.522
7.8
CVSSv3
CVE-2019-5053
An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a use-after-free condition. An attacker can craft a malicious PDF to trigger this vulnerability.
Gonitro Nitropdf 12.2.1.522
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started