CVE-2025-69624: Null Pointer Dereference

Published Apr 13, 2026
·
Updated

Nitro PDF Pro for Windows 14.41.1.4 contains a NULL pointer dereference vulnerability in the JavaScript implementation of app.alert(). When app.alert() is called with more than one argument and the first argument evaluates to null (for example, app.alert(app.activeDocs, true) when app.activeDocs is null), the engine routes the call through a fallback path intended for non-string arguments. In this path, js_ValueToString() is invoked on the null value and returns an invalid string pointer, which is then passed to JS_GetStringChars() without validation. Dereferencing this pointer leads to an access violation and application crash when opening a crafted PDF.

Affected Software

3 affected components
Nitro Nitro PDF Pro for Windows=14.41.1.4
All of the following
Gonitro Nitro Pdf Pro=14.41.1.4
Microsoft Windows

Event History

Apr 13, 2026
CVE Published
via MITRE·12:00 AM
Data Sourced
via MITRE·12:00 AM
Description
Data Sourced
via NVD·04:16 PM
DescriptionSeverityWeaknessAffected Software
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2025-69624?

CVE-2025-69624 is classified as a high-severity vulnerability due to its potential to cause application crashes.

2

How do I fix CVE-2025-69624?

To fix CVE-2025-69624, update Nitro PDF Pro for Windows to the latest version that addresses this vulnerability.

3

What is the impact of CVE-2025-69624?

The impact of CVE-2025-69624 includes application instability and potential denial-of-service conditions when certain JavaScript functions are invoked.

4

Who is affected by CVE-2025-69624?

Users of Nitro PDF Pro for Windows version 14.41.1.4 are affected by CVE-2025-69624.

5

How does CVE-2025-69624 exploit the JavaScript implementation?

CVE-2025-69624 exploits the JavaScript implementation by triggering a NULL pointer dereference through the app.alert() function when improperly used.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203