Vulnerability Details CVE-2021-33436
NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as NT AUTHORITY\SYSTEM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.0%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 6.2
References
- https://github.com/active-labs/Advisories/blob/master/2021/ACTIVE-2021-001.md
- https://knowledgebase.nomachine.com/SU05S00223
- https://knowledgebase.nomachine.com/SU05S00224
- https://knowledgebase.nomachine.com/TR05S10236
- https://github.com/active-labs/Advisories/blob/master/2021/ACTIVE-2021-001.md
- https://knowledgebase.nomachine.com/SU05S00223
- https://knowledgebase.nomachine.com/SU05S00224
- https://knowledgebase.nomachine.com/TR05S10236
Products affected by CVE-2021-33436
-
cpe:2.3:a:nomachine:nomachine:6.0.0
-
cpe:2.3:a:nomachine:nomachine:6.0.66
-
cpe:2.3:a:nomachine:nomachine:6.0.78
-
cpe:2.3:a:nomachine:nomachine:6.1.6
-
cpe:2.3:a:nomachine:nomachine:6.1.9
-
cpe:2.3:a:nomachine:nomachine:6.10.12
-
cpe:2.3:a:nomachine:nomachine:6.11.2
-
cpe:2.3:a:nomachine:nomachine:6.12.3
-
cpe:2.3:a:nomachine:nomachine:6.14.1
-
cpe:2.3:a:nomachine:nomachine:6.2.4
-
cpe:2.3:a:nomachine:nomachine:6.3.6
-
cpe:2.3:a:nomachine:nomachine:6.4.6
-
cpe:2.3:a:nomachine:nomachine:6.5.6
-
cpe:2.3:a:nomachine:nomachine:6.6.8
-
cpe:2.3:a:nomachine:nomachine:6.7.6
-
cpe:2.3:a:nomachine:nomachine:6.8.1
-
cpe:2.3:a:nomachine:nomachine:6.9.2
-
cpe:2.3:a:nomachine:nomachine:7.0
-
cpe:2.3:a:nomachine:nomachine:7.0.209
-
cpe:2.3:a:nomachine:nomachine:7.0.211
-
cpe:2.3:a:nomachine:nomachine:7.1.3
-
cpe:2.3:a:nomachine:nomachine:7.2.3
-
cpe:2.3:a:nomachine:nomachine:7.3.2
-
cpe:2.3:a:nomachine:nomachine:7.4.1
-
cpe:2.3:o:microsoft:windows:-