CVE-2018-17980

Name: CVE-2018-17980
Creator: NVD / NIST
Published: 2018-10-15T19:29:02.337+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.55%

Last modified Jun 17, 2026

CVE-2018-17980 is a vulnerability of currently unknown severity. NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is executed. (The directory could, in general, be on a local filesystem or a network share.).. EPSS estimates a 4.55% chance of exploitation in the next 30 days.

Description

NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is executed. (The directory could, in general, be on a local filesystem or a network share.).

Metrics

EPSS Probability

4.55%

90.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-426

Affected Software

Vendor	Product	Versions
Nomachine	Nomachine	< 5.3.27
Nomachine	Nomachine	>= 6.0.0, < 6.3.6

References

http://hyp3rlinx.altervista.org/advisories/NOMACHINE-TROJAN-FILE-REMOTE-CODE-EXECUTION.txtExploit, Third Party Advisory
http://packetstormsecurity.com/files/149784/NoMachine-5.3.26-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
https://www.exploit-db.com/exploits/45611/Exploit, Third Party Advisory, VDB Entry
https://www.nomachine.com/TR10P08887Vendor Advisory
http://hyp3rlinx.altervista.org/advisories/NOMACHINE-TROJAN-FILE-REMOTE-CODE-EXECUTION.txtExploit, Third Party Advisory
http://packetstormsecurity.com/files/149784/NoMachine-5.3.26-Remote-Code-Execution.htmlExploit, Third Party Advisory, VDB Entry
https://www.exploit-db.com/exploits/45611/Exploit, Third Party Advisory, VDB Entry
https://www.nomachine.com/TR10P08887Vendor Advisory

Timeline

Published: Oct 15, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2018-17980?

How severe is CVE-2018-17980?

Severity scoring for CVE-2018-17980 is pending analysis. The EPSS model estimates a 4.55% probability of exploitation in the next 30 days.

How do I fix CVE-2018-17980?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-17980?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST