Browse all 3 CVE security advisories affecting Nitro. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Nitro is a document productivity suite primarily used for creating, editing, and converting PDF files. Historically, vulnerabilities in Nitro have included remote code execution, cross-site scripting, and privilege escalation, often stemming from insecure parsing of PDF files or improper input validation. The product has faced security scrutiny, with three CVEs recorded to date, highlighting risks in its handling of embedded objects and web components. While no major public incidents have been widely reported, the consistent presence of memory corruption flaws in its parsing engine suggests potential for exploitation, particularly in environments where untrusted PDF processing occurs.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2016-8709 | Nitro Pro 安全漏洞 — Nitro Pro | 7.8 | - | 2017-02-10 |
| CVE-2016-8711 | Nitro Pro 安全漏洞 — Nitro Pro | 7.8 | - | 2017-02-10 |
| CVE-2016-8713 | Nitro Pro 安全漏洞 — Nitro Pro | 7.8 | - | 2017-02-10 |
This page lists every published CVE security advisory associated with Nitro. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.