CVE-2025-67825 is a vulnerability identified in Nitro PDF Pro for Windows versions before 14.42.0.34. The flaw involves the software displaying signer information from a non-verified PDF field rather than the verified certificate subject in certain cases. Digital signatures in PDFs are intended to provide assurance about the identity of the signer and the integrity of the document. However, this vulnerability allows an attacker to craft a PDF where the displayed signer information is inconsistent with the actual verified certificate, potentially misleading users into trusting forged or tampered documents. The root cause is the display logic within Nitro PDF Pro that does not consistently source signer details from the verified certificate identity. This can result in a mismatch between what the user sees and the actual cryptographic verification status. Although no exploits have been reported in the wild, the vulnerability could be leveraged in targeted phishing or fraud schemes where document authenticity is critical. Nitro PDF Pro is widely used in business and government environments for document management and signing, making this vulnerability relevant for organizations that rely on PDF signatures for legal or compliance purposes. The vendor addressed the issue by updating the display logic in version 14.42.0.34 to ensure signer information always reflects the verified certificate subject, eliminating the inconsistency. The vulnerability does not require user authentication or complex exploitation techniques but does require the victim to open a specially crafted PDF document. No CVSS score has been assigned yet, but the impact on trustworthiness of digital signatures is significant.

For European organizations, this vulnerability poses a risk to the integrity and authenticity of digitally signed documents, which are commonly used in legal, financial, and governmental processes. Misleading signer information can facilitate social engineering attacks, fraud, and unauthorized transactions by convincing recipients that documents are legitimately signed by trusted parties. This undermines compliance with regulations such as eIDAS, which governs electronic identification and trust services in the EU. The impact is particularly critical in sectors like finance, legal services, and public administration where document authenticity is paramount. Although the vulnerability does not directly compromise system confidentiality or availability, the erosion of trust in digital signatures can lead to significant operational and reputational damage. The absence of known exploits reduces immediate risk, but the potential for targeted attacks remains. Organizations that do not promptly update Nitro PDF Pro may be vulnerable to sophisticated forgery attempts that exploit this display inconsistency.

To mitigate this vulnerability, organizations should immediately update Nitro PDF Pro for Windows to version 14.42.0.34 or later, where the display logic has been corrected. Additionally, implement strict policies for verifying digital signatures beyond visual inspection, such as using dedicated signature validation tools or integrated document management systems that enforce certificate verification. Train users to be cautious when reviewing signer information and to verify the cryptographic validity of signatures, especially in high-risk transactions. Consider deploying endpoint protection solutions that can detect and block suspicious PDF files. For environments with high document signing volumes, integrate automated signature validation workflows to reduce reliance on manual checks. Regularly audit and monitor document handling processes to detect anomalies or inconsistencies in signed documents. Finally, maintain awareness of updates from Nitro PDF Pro and related vendors to promptly address any future vulnerabilities.