PT-2025-50783 · Soda Pdf · Soda Pdf Desktop
Xavier Danest
·
Published
2025-12-11
·
Updated
2025-12-24
·
CVE-2025-14406
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Soda PDF Desktop (affected versions not specified)
Description
A local privilege escalation issue exists in Soda PDF Desktop due to an uncontrolled search path element. This allows for potential exploitation, leading to privilege escalation.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Soda Pdf Desktop