Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nomachine nomachine vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-12763
An unspecified server utility in NoMachine prior to 5.3.10 on Mac OS X and Linux allows authenticated users to gain privileges by gaining access to local files.
Nomachine Nomachine
1 EDB exploit
7.8
CVSSv3
CVE-2018-17980
NoMachine prior to 5.3.27 and 6.x prior to 6.3.6 allows malicious users to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and th...
Nomachine Nomachine
1 EDB exploit
7.8
CVSSv3
CVE-2018-6947
An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and previous versions allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for ...
Nomachine Nomachine
Microsoft Windows 10
Microsoft Windows 8
Microsoft Windows 7
2 EDB exploits
7.3
CVSSv3
CVE-2022-34043
Incorrect permissions for the folder C:\ProgramData\NoMachine\var\uninstall of Nomachine v7.9.2 allows malicious users to perform a DLL hijacking attack and execute arbitrary code.
Nomachine Nomachine 7.9.2
7.3
CVSSv3
CVE-2021-33436
NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately...
Nomachine Nomachine
5.5
CVSSv3
CVE-2018-20029
The nxfs.sys driver in the DokanFS library 0.6.0 in NoMachine prior to 6.4.6 on Windows 10 allows local users to cause a denial of service (BSOD) because uninitialized memory can be read.
Nomachine Nomachine
Dokan-dev Dokanfs 0.6.0
5.3
CVSSv3
CVE-2022-48074
An issue in NoMachine before v8.2.3 allows malicious users to execute arbitrary commands via a crafted .nxs file.
Nomachine Nomachine
NA
CVE-2012-5003
nxapplet.jar in No Machine NX Web Companion 3.x and previous versions does not properly verify the authenticity of updates, which allows user-assisted remote malicious users to execute arbitrary code via a crafted (1) SiteUrl or (2) RedirectUrl parameter that points to a Trojan H...
Nomachine Nx Web Companion 3.2.0-1
Nomachine Nx Web Companion 3.1.0-1
Nomachine Nx Web Companion 2.0.0-1
Nomachine Nx Web Companion 1.5.0
Nomachine Nx Web Companion 3.0.0-5
Nomachine Nx Web Companion 3.0.0-4
Nomachine Nx Web Companion 3.0.0-3
Nomachine Nx Web Companion 3.0.0-2
Nomachine Nx Web Companion 3.4.0-2
Nomachine Nx Web Companion 3.4.0-1
Nomachine Nx Web Companion 3.0.0-1
Nomachine Nx Web Companion 2.1.0-1
Nomachine Nx Web Companion
Nomachine Nx Web Companion 3.3.0-2
Nomachine Nx Web Companion 3.3.0-1
Nomachine Nx Web Companion 3.4.0-3
Nomachine Nx Web Companion 3.5.0-1
NA
CVE-2011-3977
Unspecified vulnerability in nxconfigure.sh in NoMachine NX Node 3.x prior to 3.5.0-4 and NX Server 3.x prior to 3.5.0-5 allows local users to read arbitrary files via unknown vectors.
Nomachine Nx Node 3.0.0
Nomachine Nx Server 3.0.0
Nomachine Nx Server 3.5.0
Nomachine Nx Server 3.4.0
Nomachine Nx Node 3.4.0
Nomachine Nx Node 3.5.0
NA
CVE-2007-0625
nxconfigure.sh in NoMachine NX Server prior to 2.1.0-18 does not validate the invoking user, which allows local users to modify server configuration keys in /usr/NX/etc/server.cfg, resulting in an unspecified denial of service.
Nomachine Nx Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2