The current version of Nitro PDF Pro has at least one vulnerability that could be used to attempt remote code execution on the victim host. A fix from a third party is on its way.
An official patch from the developer is unavailable for this security flaw, which has a severity score of 8.8 out of 10. Leveraging is possible through a specially crafted PDF file opened with a vulnerable version of the software.
Nitro PDF's developer has a customer base predominantly from the enterprise world. Companies operating at a national or global scale are on the list, running its software as an alternative to Adobe Acrobat Pro.
Its customers include the Australian Pacific National rail freight operator, German automotive manufacturer Continental, Zebra Technologies (asset tracking solutions), T-Mobile Austria (telecom), Swiss Re (insurance), and JLL (property management).