How severe is CVE-2020-6093?

CVE-2020-6093 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2020-6093

Name: nitro_pro
Author: gonitro

5.5MEDIUM

An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in

公開日: 5/18/2020更新日: 11/21/2024

説明

An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in information disclosure. In order to trigger this vulnerability, victim must open a malicious file.

AI分析AIによる分析

影響を受ける製品

gonitronitro_pro

13.9.1.155

参照

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1014
ExploitThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1014
ExploitThird Party Advisory