CVE-2021-33436
Last modified
CVE-2021-33436 is a high-severity vulnerability rated 7.3/10 on the CVSS scale. NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as NT AUTHORITY\SYSTEM.. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as NT AUTHORITY\SYSTEM.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nomachine | Nomachine | >= 6.0.0, < 6.15.1 |
| Nomachine | Nomachine | >= 7.0, < 7.5.2 |
References
- https://github.com/active-labs/Advisories/blob/master/2021/ACTIVE-2021-001.mdThird Party Advisory
- https://knowledgebase.nomachine.com/SU05S00223Release Notes, Vendor Advisory
- https://knowledgebase.nomachine.com/SU05S00224Release Notes, Vendor Advisory
- https://knowledgebase.nomachine.com/TR05S10236Vendor Advisory
- https://github.com/active-labs/Advisories/blob/master/2021/ACTIVE-2021-001.mdThird Party Advisory
- https://knowledgebase.nomachine.com/SU05S00223Release Notes, Vendor Advisory
- https://knowledgebase.nomachine.com/SU05S00224Release Notes, Vendor Advisory
- https://knowledgebase.nomachine.com/TR05S10236Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-33436?
How severe is CVE-2021-33436?
How do I fix CVE-2021-33436?
Are you affected by CVE-2021-33436?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST