How severe is CVE-2020-6093?

CVE-2020-6093 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2020-6093

Name: nitro_pro
Author: gonitro

5.5MEDIUM

An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in

发布于: 5/18/2020更新于: 11/21/2024

描述

An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in information disclosure. In order to trigger this vulnerability, victim must open a malicious file.

AI分析AI驱动

受影响产品

gonitronitro_pro

13.9.1.155

参考资料

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1014
ExploitThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1014
ExploitThird Party Advisory