CVE-2019-19819: Null Pointer Dereference
First published: Mon Dec 16 2019(Updated: )
The JBIG2Globals library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0x90ec NULL Pointer Dereference via crafted Unicode content.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gonitro Nitropdf | =12.0.0.112 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-19819.
What is the severity of CVE-2019-19819?
The severity of CVE-2019-19819 is medium with a CVSS score of 5.5.
Which software is affected by CVE-2019-19819?
The software affected by CVE-2019-19819 is Nitro Free PDF Reader version 12.0.0.112.
What is the vulnerability description of CVE-2019-19819?
CVE-2019-19819 is a vulnerability in the JBIG2Globals library in Nitro Free PDF Reader 12.0.0.112 that allows a NULL Pointer Dereference via crafted Unicode content.
How can I fix the CVE-2019-19819 vulnerability?
To fix the CVE-2019-19819 vulnerability, it is recommended to update Nitro Free PDF Reader to the latest version.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/event
- agent/weakness
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/gonitro
- canonical/gonitro nitropdf
- version/gonitro nitropdf/12.0.0.112