Gonitro Nitro Pro 13.9.1.155

CPE Details

Gonitro Nitro Pro 13.9.1.155
gonitro
nitro_pro
13.9.1.155
2020-05-19
12h33 +00:00
2020-05-19
12h33 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:gonitro:nitro_pro:13.9.1.155:*:*:*:*:*:*:*

Informations

Vendor

gonitro

Product

nitro_pro

Version

13.9.1.155

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-6093 2020-05-18 14h17 +00:00 An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in information disclosure. In order to trigger this vulnerability, victim must open a malicious file.
5.5
Medium
CVE-2020-6092 2020-05-18 14h14 +00:00 An exploitable code execution vulnerability exists in the way Nitro Pro 13.9.1.155 parses Pattern objects. A specially crafted PDF file can trigger an integer overflow that can lead to arbitrary code execution. In order to trigger this vulnerability, victim must open a malicious file.
7.8
High
CVE-2020-6074 2020-05-18 14h13 +00:00 An exploitable code execution vulnerability exists in the PDF parser of Nitro Pro 13.9.1.155. A specially crafted PDF document can cause a use-after-free which can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability.
8.8
High
CVE-2020-10222 2020-03-08 20h46 +00:00 npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to Heap Corruption at npdf!nitro::get_property+2381 via a crafted PDF document.
8.1
High
CVE-2020-10223 2020-03-08 20h46 +00:00 npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to JBIG2Decode CNxJBIG2DecodeStream Heap Corruption at npdf!CAPPDAnnotHandlerUtils::create_popup_for_markup+0x12fbe via a crafted PDF document.
8.1
High