ReportizFlow
Filtered by vendor Gonitro
Subscriptions
Filtered by product Nitro Pdf Pro
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-35288 | 1 Gonitro | 1 Nitro Pdf Pro | 2024-11-21 | 7.8 High |
| Nitro PDF Pro before 13.70.8.82 and 14.x before 14.26.1.0 allows Local Privilege Escalation in the MSI Installer because custom actions occur unsafely in repair mode. CertUtil is run in a conhost.exe window, and there is a mechanism allowing CTRL+o to launch cmd.exe as NT AUTHORITY\SYSTEM. | ||||
| CVE-2016-8713 | 1 Gonitro | 1 Nitro Pdf Pro | 2024-11-21 | 7.8 High |
| A remote out of bound write / memory corruption vulnerability exists in the PDF parsing functionality of Nitro Pro 10.5.9.9. A specially crafted PDF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific PDF file to trigger this vulnerability. | ||||
| CVE-2016-8711 | 1 Gonitro | 1 Nitro Pdf Pro | 2024-11-21 | 7.8 High |
| A potential remote code execution vulnerability exists in the PDF parsing functionality of Nitro Pro 10. A specially crafted PDF file can cause a vulnerability resulting in potential code execution. An attacker can send the victim a specific PDF file to trigger this vulnerability. | ||||
| CVE-2016-8709 | 1 Gonitro | 1 Nitro Pdf Pro | 2024-11-21 | 7.8 High |
| A remote out of bound write / memory corruption vulnerability exists in the PDF parsing functionality of Nitro Pro 10. A specially crafted PDF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific PDF file to trigger this vulnerability. | ||||
Page 1 of 1.