NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:gonitro:nitro_pro:13.9.1.155:*:*:*:*:*:*:*
CPE Name Search: true

There are 5 matching records.

Displaying matches 1 through 5.

Vuln ID	Summary	CVSS Severity
CVE-2020-6093	An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in information disclosure. In order to trigger this vulnerability, victim must open a malicious file. Published: May 18, 2020; 1:15:10 PM -0400	V4.0:(not available) V3.1: 5.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2020-6092	An exploitable code execution vulnerability exists in the way Nitro Pro 13.9.1.155 parses Pattern objects. A specially crafted PDF file can trigger an integer overflow that can lead to arbitrary code execution. In order to trigger this vulnerability, victim must open a malicious file. Published: May 18, 2020; 1:15:10 PM -0400	V4.0:(not available) V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM
CVE-2020-6074	An exploitable code execution vulnerability exists in the PDF parser of Nitro Pro 13.9.1.155. A specially crafted PDF document can cause a use-after-free which can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability. Published: May 18, 2020; 1:15:10 PM -0400	V4.0:(not available) V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM
CVE-2020-10223	npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to JBIG2Decode CNxJBIG2DecodeStream Heap Corruption at npdf!CAPPDAnnotHandlerUtils::create_popup_for_markup+0x12fbe via a crafted PDF document. Published: March 08, 2020; 7:15:11 PM -0400	V4.0:(not available) V3.1: 8.1 HIGH V2.0: 5.8 MEDIUM
CVE-2020-10222	npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to Heap Corruption at npdf!nitro::get_property+2381 via a crafted PDF document. Published: March 08, 2020; 7:15:10 PM -0400	V4.0:(not available) V3.1: 8.1 HIGH V2.0: 5.8 MEDIUM