Vulnerabilities > Nuance
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-12 | CVE-2021-37599 | SQL Injection vulnerability in Nuance Winscribe Dictation 4.1.0.99 The exporter/Login.aspx login form in the Exporter in Nuance Winscribe Dictation 4.1.0.99 is vulnerable to SQL injection that allows a remote, unauthenticated attacker to read the database (and execute code in some situations) via the txtPassword parameter. | 7.5 |
| 2021-01-07 | CVE-2018-18688 | Improper Verification of Cryptographic Signature vulnerability in multiple products The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. network low complexity code-industry foxitsoftware gonitro iskysoft libreoffice nuance qoppa soft-xpansion CWE-347 | 5.0 |
| 2014-03-27 | CVE-2013-0732 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Nuance PDF Reader 6.0/7.0 Heap-based buffer overflow in PDFCore8.dll in Nuance PDF Reader before 8.1 allows remote attackers to execute arbitrary code via crafted font table directory values in a TTF file, related to naming table entries. | 9.3 |
| 2013-02-24 | CVE-2013-0113 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Nuance PDF Reader and PDF Reader Plus Nuance PDF Reader 7.0 and PDF Viewer Plus 7.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document. | 9.3 |
| 2012-09-06 | CVE-2010-5209 | Unspecified vulnerability in Nuance PDF Reader 6.0 Multiple untrusted search path vulnerabilities in Nuance PDF Reader 6.0 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) exceptiondumpdll.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. local nuance | 6.9 |