Security Advisory

CVE-2021-33436

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-28 10:57:43

Last updated 2024-08-03 23:50:42

Assigner mitre

State PUBLISHED

Description

NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as NT AUTHORITYSYSTEM.

← Browse all CVEs View on cve.org ↗