Advisory Details

This vulnerability allows phyiscally-present attackers to escalate privileges on affected installations of PDFsam Enhanced. An attacker must first obtain the ability to mount a malicious drive onto the target system in order to exploit this vulnerability.

The specific flaw exists within the configuration of OpenSSL. The product loads an OpenSSL configuration file from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.

08/14/25 - ZDI reported the vulnerability to the vendor
08/15/25 – the vendor acknowledged the receipt of the report
09/23/25 - ZDI asked for updates
11/10/25 - ZDI asked for updates
12/04/25 – ZDI notified the vendor of the intention to publish the case as a 0-day advisory on 12/11/25

-- Mitigation: Given the nature of the vulnerability, the only salient mitigation strategy is to restrict interaction with the product

• 2025-08-14 - Vulnerability reported to vendor
• 2025-12-11 - Coordinated public release of advisory
• 2025-12-11 - Advisory Updated