Lucene search
+L

6 matches found

nvd
nvd
added 2019/10/09 9:15 p.m.17 views

CVE-2019-5047

An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability...

7.8CVSS7.5AI score0.01331EPSS
Exploits1References1
osv
osv
added 2019/10/09 9:15 p.m.5 views

CVE-2019-5047

An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability...

7.8CVSS7.1AI score0.01331EPSS
Exploits1References1
prion
prion
added 2019/10/09 9:15 p.m.20 views

Type confusion

An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability...

6.8CVSS7.5AI score0.01331EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2019/10/09 8:40 p.m.18 views

CVE-2019-5047

An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability...

7.5CVSS7.6AI score0.01331EPSS
Exploits1References1
cve
cve
added 2019/10/09 8:40 p.m.85 views

CVE-2019-5047

The vulnerability CVE-2019-5047 affects NitroPDF, specifically the CharProcs parsing path, where a crafted PDF can trigger a type confusion leading to a Use After Free. Talos advisories (TALOS-2019-0816) document an exploitable Use After Free in NitroPDF’s CharProcs parsing, with NitroPDF 12.12.1...

7.8CVSS7.5AI score0.01331EPSS
Exploits1References1Affected Software1
talos
talos
added 2019/10/09 12:0 a.m.105 views

NitroPDF CharProcs Remote Code Execution Vulnerability

Summary An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker can craft a malicious PDF to trigger this vulnerability. Tested Versions NitroPDF 12.2.1.52...

7.8CVSS7.6AI score0.01331EPSS
Exploits1
Rows per page
Query Builder