Nitro Pro@13.33.2.645 Security Vulnerabilities and Issues — Nitro Pro@13.33.2.645 CVE List

Lucene search

GonitroNitro Pro13.33.2.645

3 matches found

CVE•added 2021/10/18 1:15 p.m.•46 views

CVE-2021-21797

An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a reference to a timeout object to be stored in two different places. When closed, the document will result in the reference being released twice. This can lead ...

8.8CVSS7.6AI score0.71708EPSS

CVE•added 2021/10/18 1:15 p.m.•45 views

CVE-2021-21796

An exploitable use-after-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause an object containing the path to a document to be destroyed and then later reused, resulting in a use-after-free vulnerability, which can lead to code executi...

8.8CVSS7.7AI score0.75472EPSS

CVE•added 2021/09/15 2:15 p.m.•36 views

CVE-2021-21798

An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a stack variable to go out of scope, resulting in the application dereferencing a stale pointer. This can lead to code execution under the c...

8.8CVSS7.6AI score0.40263EPSS