Nuance
Products
7- 4 CVEs
- 2 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
8| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26142 | Cri | 0.64 | 9.8 | 0.02 | Jun 9, 2026 | Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network. | ||
| CVE-2021-37599 | Cri | 0.64 | 9.8 | 0.03 | Aug 12, 2021 | The exporter/Login.aspx login form in the Exporter in Nuance Winscribe Dictation 4.1.0.99 is vulnerable to SQL injection that allows a remote, unauthenticated attacker to read the database (and execute code in some situations) via the txtPassword parameter. | ||
| CVE-2024-48294 | Med | 0.36 | 5.5 | 0.00 | Nov 18, 2024 | A NULL pointer dereference in the component libPdfCore.dll of Wondershare PDF Reader v1.0.9.2544 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file. | ||
| CVE-2025-30398 | 0.00 | — | 0.01 | Nov 11, 2025 | Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2025-47977 | 0.00 | — | 0.01 | Jun 10, 2025 | Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an unauthorized attacker to perform spoofing over a network. | |||
| CVE-2013-0732 | 0.00 | — | 0.05 | Mar 27, 2014 | Heap-based buffer overflow in PDFCore8.dll in Nuance PDF Reader before 8.1 allows remote attackers to execute arbitrary code via crafted font table directory values in a TTF file, related to naming table entries. | |||
| CVE-2013-0113 | 0.00 | — | 0.03 | Feb 24, 2013 | Nuance PDF Reader 7.0 and PDF Viewer Plus 7.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document. | |||
| CVE-2010-5209 | 0.00 | — | 0.00 | Sep 6, 2012 | Multiple untrusted search path vulnerabilities in Nuance PDF Reader 6.0 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) exceptiondumpdll.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. NOTE: some… |
- risk 0.64cvss 9.8epss 0.02
Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network.
- risk 0.64cvss 9.8epss 0.03
The exporter/Login.aspx login form in the Exporter in Nuance Winscribe Dictation 4.1.0.99 is vulnerable to SQL injection that allows a remote, unauthenticated attacker to read the database (and execute code in some situations) via the txtPassword parameter.
- risk 0.36cvss 5.5epss 0.00
A NULL pointer dereference in the component libPdfCore.dll of Wondershare PDF Reader v1.0.9.2544 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
- CVE-2025-30398Nov 11, 2025risk 0.00cvss —epss 0.01
Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a network.
- CVE-2025-47977Jun 10, 2025risk 0.00cvss —epss 0.01
Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an unauthorized attacker to perform spoofing over a network.
- CVE-2013-0732Mar 27, 2014risk 0.00cvss —epss 0.05
Heap-based buffer overflow in PDFCore8.dll in Nuance PDF Reader before 8.1 allows remote attackers to execute arbitrary code via crafted font table directory values in a TTF file, related to naming table entries.
- CVE-2013-0113Feb 24, 2013risk 0.00cvss —epss 0.03
Nuance PDF Reader 7.0 and PDF Viewer Plus 7.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document.
- CVE-2010-5209Sep 6, 2012risk 0.00cvss —epss 0.00
Multiple untrusted search path vulnerabilities in Nuance PDF Reader 6.0 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) exceptiondumpdll.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. NOTE: some…