Vulnerabilities > CVE-2019-19819 - NULL Pointer Dereference vulnerability in Gonitro Nitropdf 12.0.0.112

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
gonitro
CWE-476

Summary

The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content.

Vulnerable Configurations

Part Description Count
Application
Gonitro
1

Common Weakness Enumeration (CWE)