Known Vulnerabilities for products from Gonitro
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Gonitro".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-21798 | An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A spe... | 7.8 - HIGH | 2021-09-15 | 2022-10-25 |
| CVE-2021-21797 | An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted docume... | 7.8 - HIGH | 2021-10-18 | 2022-05-13 |
| CVE-2021-21796 | An exploitable use-after-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted doc... | 7.8 - HIGH | 2021-10-18 | 2022-05-13 |
| CVE-2020-10223 | npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to JBIG2Decode CNxJBIG2DecodeStream Heap Corruption at npdf!CAPPDAnnot... | 8.1 - HIGH | 2020-03-08 | 2020-03-09 |
| CVE-2020-10222 | npdf.dll in Nitro Pro before 13.13.2.242 is vulnerable to Heap Corruption at npdf!nitro::get_property+2381 via a crafted PDF ... | 8.1 - HIGH | 2020-03-08 | 2021-07-21 |
| CVE-2020-6146 | An exploitable code execution vulnerability exists in the rendering functionality of Nitro Pro 13.13.2.242 and 13.16.2.300. W... | 8.8 - HIGH | 2020-09-16 | 2022-05-12 |
| CVE-2020-6116 | An arbitrary code execution vulnerability exists in the rendering functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2... | 7.8 - HIGH | 2020-09-17 | 2022-05-12 |
| CVE-2020-6115 | An exploitable vulnerability exists in the cross-reference table repairing functionality of Nitro Software, Inc.’s Nitro Pr... | 7.8 - HIGH | 2020-09-17 | 2022-05-12 |
| CVE-2020-6113 | An exploitable vulnerability exists in the object stream parsing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.... | 7.8 - HIGH | 2020-09-17 | 2022-05-12 |
| CVE-2020-6112 | An exploitable code execution vulnerability exists in the JPEG2000 Stripe Decoding functionality of Nitro Software, Inc.’s ... | 7.8 - HIGH | 2020-09-17 | 2022-05-12 |
| CVE-2020-6093 | An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A special... | 5.5 - MEDIUM | 2020-05-18 | 2022-05-12 |
| CVE-2020-6092 | An exploitable code execution vulnerability exists in the way Nitro Pro 13.9.1.155 parses Pattern objects. A specially crafte... | 7.8 - HIGH | 2020-05-18 | 2022-05-12 |
| CVE-2020-6074 | An exploitable code execution vulnerability exists in the PDF parser of Nitro Pro 13.9.1.155. A specially crafted PDF documen... | 8.8 - HIGH | 2020-05-18 | 2022-06-03 |
| CVE-2019-19819 | The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyD... | 5.5 - MEDIUM | 2020-01-10 | 2020-01-15 |
| CVE-2019-19818 | The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyDa... | 5.5 - MEDIUM | 2019-12-16 | 2019-12-19 |
| CVE-2019-19817 | The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyDa... | 5.5 - MEDIUM | 2020-01-10 | 2020-01-15 |
| CVE-2019-18958 | Nitro Pro before 13.2 creates a debug.log file in the directory where a .pdf file is located, if the .pdf document was produc... | 7.8 - HIGH | 2019-11-21 | 2021-07-21 |
| CVE-2019-5053 | An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can ca... | 7.8 - HIGH | 2019-10-09 | 2022-06-27 |
| CVE-2019-5050 | A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipu... | 7.8 - HIGH | 2019-10-09 | 2022-06-27 |
| CVE-2019-5048 | A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipu... | 7.8 - HIGH | 2019-10-09 | 2022-06-27 |
Known software with vulnerabilities from Gonitro
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Gonitro | Nitro Free Pdf Reader | 12.0.0.112 |
| Application | Gonitro | Nitro Pro | - |
| Application | Gonitro | Nitropdf | 8.5.0.26 |