|
218801
|
7.8 |
HIGH
Local
|
wacom
|
driver
|
An exploitable privilege escalation vulnerability exists in the Wacom, driver version 6.3.32-3, update helper service in the startProcess command. The command takes a user-supplied script argument an…
|
CWE-88
Argument Injection
|
CVE-2019-5012
|
2024-11-21 13:44 |
2019-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218802
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a use-after-free condition. An attacker…
|
CWE-416
Use After Free
|
CVE-2019-5053
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218803
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger thi…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5050
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218804
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger thi…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5048
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218805
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
An exploitable Use After Free vulnerability exists in the CharProcs parsing functionality of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a Use After Free. An attacker c…
|
CWE-416
CWE-843
Use After Free
Type Confusion
|
CVE-2019-5047
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218806
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbit…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5046
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218807
|
7.8 |
HIGH
Local
|
gonitro
|
nitropdf
|
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbit…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5045
|
2024-11-21 13:44 |
2019-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218808
|
8.8 |
HIGH
Network
|
foxitsoftware
|
phantompdf
reader
|
An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2019-5031
|
2024-11-21 13:44 |
2019-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218809
|
6.7 |
MEDIUM
Local
|
e2fsprogs_project
debian
fedoraproject
canonical
netapp
|
e2fsprogs
debian_linux
fedora
ubuntu_linux
solidfire
hci_management_node
|
An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in c…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5094
|
2024-11-21 13:44 |
2019-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218810
|
9.8 |
CRITICAL
Network
|
aspose
|
aspose.pdf_for_c\+\+
|
An uninitialized memory access vulnerability exists in the way Aspose.PDF 19.2 for C++ handles invalid parent object pointers. A specially crafted PDF can cause a read and write from uninitialized me…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2019-5067
|
2024-11-21 13:44 |
2019-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
