Every CVE whose affected-product data names Gonitro Nitropdf, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2019-5053 — CVSS 7.8 (high): An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can cause a type…
CVE-2019-5045 — CVSS 7.8 (high): A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF…
CVE-2019-5046 — CVSS 7.8 (high): A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF…
CVE-2019-5047 — CVSS 7.8 (high): An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a…
CVE-2019-5048 — CVSS 7.8 (high): A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this…
CVE-2019-5050 — CVSS 7.8 (high): A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this…
CVE-2019-19819 — CVSS 5.5 (medium): The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec…