Vulnerabilities > Gonitro > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-09 | CVE-2019-5050 | Out-of-bounds Write vulnerability in Gonitro Nitropdf 12.12.1.522 A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. | 6.8 |
| 2019-10-09 | CVE-2019-5048 | Out-of-bounds Write vulnerability in Gonitro Nitropdf 12.2.1.522 A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. | 6.8 |
| 2019-10-09 | CVE-2019-5047 | Type Confusion vulnerability in Gonitro Nitropdf 12.2.1.522 An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. | 6.8 |
| 2019-10-09 | CVE-2019-5046 | Out-of-bounds Write vulnerability in Gonitro Nitropdf 12.12.1.522 A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. | 6.8 |
| 2019-10-09 | CVE-2019-5045 | Out-of-bounds Write vulnerability in Gonitro Nitropdf 12.12.1.522 A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. | 6.8 |
| 2017-08-03 | CVE-2017-7442 | Path Traversal vulnerability in Gonitro Nitro PRO 11.0.3.173 Nitro Pro 11.0.3.173 allows remote attackers to execute arbitrary code via saveAs and launchURL calls with directory traversal sequences. | 6.8 |
| 2017-07-07 | CVE-2017-7950 | Improper Input Validation vulnerability in Gonitro Nitro PRO Nitro Pro 11.0.3 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted PCX file. | 4.3 |