CVE-2021-21798
published 2021-09-15CVE-2021-21798: An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause…
PriorityP346high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
15.61%
96.4th percentile
An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted document can cause a stack variable to go out of scope, resulting in the application dereferencing a stale pointer. This can lead to code execution under the context of the application. An attacker can convince a user to open a document to trigger the vulnerability.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gonitro | nitro_pro | — | — |
| gonitro | nitro_pro | — | — |
| gonitro | nitro_pro | — | — |
Detection & IOCsextracted from sources · hover to see the quote
snort↗
57296
snort↗
57297
- →Trigger vector is a specially crafted malicious PDF file opened by the user; monitor for suspicious PDF opens in Nitro Pro versions 13.31.0.605 and 13.33.2.645. ↗
- ·Confirmed vulnerable versions are Nitro Pro 13.31.0.605 and 13.33.2.645; detection and patching efforts should be scoped to these versions. ↗
- ·Snort rules 57296 and 57297 may be updated as additional vulnerability information becomes available; always reference the latest rules from Firepower Management Center or Snort.org. ↗
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF
blogs_talos·2021-09-13·CVSS 7.8
[HIGH] Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF
## Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF
A Cisco Talos team member discovered these vulnerabilities.
Cisco Talos recently discovered a vulnerability in the Nitro Pro PDF reader that could allow an attacker to execute code in the context of the application.
Nitro Pro PDF is part of Nitro Software’s Productivity Suite. Pro PDF allows users to create and modify PDFs and other digital documents. It includes support for several capabilities via third-party libraries to parse the PDFs.
TALOS-2021-1267 (CVE-2021-21798) is a use-after-free vulnerability that can be triggered if a target opens a specially crafted, malicious PDF. Cisco Talos worked with Nitro to ensure that these issues are resolved and an update is available for affected customers, all in adhere
Talos
Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF
blogs_talos·2021-09-13·CVSS 7.8
CVE-2021-21798 [HIGH] Vulnerability Spotlight: Code execution vulnerability in Nitro Pro PDF
A Cisco Talos team member discovered these vulnerabilities.
Cisco Talos recently discovered a vulnerability in the Nitro Pro PDF reader that could allow an attacker to execute code in the context of the application.
Nitro Pro PDF is part of Nitro Software’s Productivity Suite. Pro PDF allows users to create and modify PDFs and other digital documents. It includes support for several capabilities via third-party libraries to parse the PDFs.
TALOS-2021-1267 (CVE-2021-21798) is a use-after-free vulnerability that can be triggered if a target opens a specially crafted, malicious PDF. Cisco Talos worked with Nitro to ensure that these issues are resolved and an update is available for affected customers, all in adherence to Cisco’s vulnerability disclosure policy.
Users are encouraged to up
Wiz
CVE-2025-67825 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.8
CVE-2025-67825 [HIGH] CVE-2025-67825 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-67825 :
Nitro Pro vulnerability analysis and mitigation
An issue was discovered in Nitro PDF Pro for Windows before 14.42.0.34. In certain cases, it displays signer information from a non-verified PDF field rather than from the verified certificate subject. This could allow a document to present inconsistent signer details. The display logic was updated to ensure signer information consistently reflects the verified certificate identity.
Source : NVD
## 5.5
Score
Published January 8, 2026
Severity MEDIUM
CNA Score 5.5
Affected Technologies
Nitro Pro
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) N/A
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe
2021-09-15
Published