Vulnerability Spotlight Code execution vulnerability in Nitro Pro PDF

13-Sep-21

A vulnerability in the Nitro Pro PDF reader was recently found by Cisco Talos, which might allow an attacker to execute malware in the context of the programme.

It supports numerous capabilities for parsing PDFs via thirdparty libraries. The TALOS20211267 (CVE202121798) vulnerability is a useafterfree flaw that can be exploited if a target opens a specially designed malicious PDF.

Read More…