CVE 9.8 CRITICAL

CVE-2025-67825_CVE-2025-67825

January 9, 2026 invoker category_cve
9.8 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

An issue was discovered in Nitro PDF Pro for Windows before 14.42.0.34. In certain cases, it displays signer information from a non-verified PDF field rather than from the verified certificate subject. This could allow a document to present inconsistent signer details. The display logic was updated to ensure signer information consistently reflects the verified certificate identity.

AI Analysis

Inconsistent signer details due to incorrect display of signer information from non-verified PDF fields

Basic Information

ID CVE-2025-67825
Source mitre
Published Jan 8, 2026 at 00:00
Modified Jan 9, 2026 at 18:38

Affected Product

Vendor Nitro
Product Nitro PDF Pro
Version before 14.42.0.34
Affected Versions n/a n/a n/a

CWE Classification

CWE-346

AI Assessment

AI Score 9.8 / 10
AI Severity Critical
Vendor Nitro
Product Nitro PDF Pro
Version before 14.42.0.34

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.