Local Privilege Escalation in NoMachine for Windows by NoMachine
CVE-2021-33436

7.3HIGH

Key Information:

Vendor

Nomachine

Status
Nomachine
Vendor
CVE Published:
28 April 2022

What is CVE-2021-33436?

The NoMachine for Windows application prior to specified versions is susceptible to local privilege escalation due to unsafe DLL loading practices. This flaw permits local non-privileged users to exploit any writable directory within the system path to perform DLL Hijacking. As a consequence, an attacker can execute arbitrary code with elevated privileges, running it as NT AUTHORITY\SYSTEM, which poses a significant risk to the integrity and security of the system.

References

https://github.com/active-labs/Advisories/blob/master/202...
x_refsource_MISC
https://knowledgebase.nomachine.com/TR05S10236
x_refsource_MISC
https://knowledgebase.nomachine.com/SU05S00224
x_refsource_MISC

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.