Vulnerability CVE-2024-35288


Published: 2024-10-09

Description:
Nitro PDF Pro before 13.70.8.82 and 14.x before 14.26.1.0 allows Local Privilege Escalation in the MSI Installer because custom actions occur unsafely in repair mode. CertUtil is run in a conhost.exe window, and there is a mechanism allowing CTRL+o to launch cmd.exe as NT AUTHORITY\SYSTEM.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Nitro PDF Pro Local Privilege Escalation
Sandro Einfeldt
02.10.2024

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

 References:
https://www.gonitro.com/support/downloads#securityUpdates
https://seclists.org/fulldisclosure/2024/Sep/59
https://sec-consult.com/vulnerability-lab/advisory/local-privilege-escalation-via-msi-installer-in-nitro-pdf-pro/

Copyright 2024, cxsecurity.com

 

Back to Top