CVE-2025-67825 is a vulnerability identified in Nitro PDF Pro for Windows versions before 14.42.0.34. The flaw involves the software's logic for displaying signer information in digitally signed PDF documents. Instead of consistently showing the signer details from the verified certificate subject, Nitro PDF Pro may display information from a non-verified PDF field. This discrepancy can cause users to see misleading signer details that do not correspond to the actual certificate used to sign the document. The root cause relates to improper validation and display logic, categorized under CWE-346 (Origin Validation Error). While the vulnerability does not allow direct code execution or data leakage, it undermines the integrity of digital signatures by enabling forged or altered signer information to appear legitimate. Exploiting this vulnerability requires a user to open a maliciously crafted PDF file locally, as the attack vector is local with low attack complexity and no privileges required. The CVSS 3.1 base score is 5.5 (medium), reflecting the impact on integrity without affecting confidentiality or availability. Nitro PDF Pro has updated its display logic in version 14.42.0.34 to ensure signer information always reflects the verified certificate identity, closing this gap.

For European organizations, this vulnerability poses a significant risk to the trustworthiness of digitally signed documents, which are widely used in legal, financial, and governmental transactions. Misrepresentation of signer identity can lead to fraudulent contracts, unauthorized approvals, or manipulation of official documents. This undermines compliance with regulations such as eIDAS, which governs electronic identification and trust services in the EU. Although the vulnerability does not compromise system confidentiality or availability, the integrity breach can cause reputational damage, legal disputes, and financial losses. Organizations relying heavily on Nitro PDF Pro for document signing and verification, especially in sectors like banking, legal services, and public administration, are particularly vulnerable. The absence of known exploits reduces immediate risk but does not eliminate the threat of targeted attacks or social engineering leveraging this flaw.

The primary mitigation is to upgrade Nitro PDF Pro to version 14.42.0.34 or later, where the display logic has been corrected. Organizations should enforce software update policies to ensure timely patching. Additionally, implement user training to recognize suspicious documents and verify signer certificates manually through alternative trusted tools or certificate authorities. Integrate multi-factor verification processes for critical document approvals to reduce reliance on a single signature display. Employ document management systems that validate digital signatures independently of the PDF viewer. For high-risk environments, consider restricting the use of Nitro PDF Pro to trusted personnel and sandboxing PDF viewing applications to limit exposure. Monitoring for anomalous document signing patterns and maintaining audit trails can help detect potential misuse.