NoMachine 4.0.362

CPE Details

NoMachine 4.0.362
nomachine
nomachine
4.0.362
2019-05-28
14h34 +00:00
2019-05-28
14h34 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:nomachine:nomachine:4.0.362:*:*:*:*:*:*:*

Informations

Vendor

nomachine

Product

nomachine

Version

4.0.362

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-8614 2025-09-02 18h15 +00:00 NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of OpenSSL. The product loads an OpenSSL configuration file from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-26766.
7.8
High
CVE-2023-39107 2023-08-03 22h00 +00:00 An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS before v8.8.1 allows attackers to overwrite root-owned files by using hardlinks.
9.1
Critical
CVE-2022-48074 2023-02-02 23h00 +00:00 An issue in NoMachine before v8.2.3 allows attackers to execute arbitrary commands via a crafted .nxs file.
5.3
Medium
CVE-2018-20029 2018-12-10 20h00 +00:00 The nxfs.sys driver in the DokanFS library 0.6.0 in NoMachine before 6.4.6 on Windows 10 allows local users to cause a denial of service (BSOD) because uninitialized memory can be read.
5.5
Medium
CVE-2018-17980 2018-10-15 17h00 +00:00 NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is executed. (The directory could, in general, be on a local filesystem or a network share.).
7.8
High
CVE-2018-6947 2018-02-28 21h00 +00:00 An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for Windows 8 and 10.
7.8
High
CVE-2017-12763 2017-08-29 13h00 +00:00 An unspecified server utility in NoMachine before 5.3.10 on Mac OS X and Linux allows authenticated users to gain privileges by gaining access to local files.
8.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.