PT-2024-26417 · Nitro · Nitro Pro Pdf
Michael Baer
+1
·
Published
2024-09-30
·
Updated
2025-11-17
·
CVE-2024-35288
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Nitro PDF Pro versions prior to 13.70.8.82
Nitro PDF Pro versions 14.x prior to 14.26.1.0
Description
The issue allows Local Privilege Escalation in the MSI Installer because custom actions occur unsafely in repair mode. CertUtil is run in a conhost.exe window, and there is a mechanism allowing CTRL+o to launch cmd.exe as NT AUTHORITYSYSTEM.
Recommendations
For Nitro PDF Pro versions prior to 13.70.8.82, update to version 13.70.8.82 or later.
For Nitro PDF Pro versions 14.x prior to 14.26.1.0, update to version 14.26.1.0 or later.
As a temporary workaround, consider restricting the use of the MSI Installer in repair mode until a patch is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Nitro Pro Pdf