CVE-2018-6947

HIGH

Nomachine < 6.0.66_2 - Denial of Service

Title source: rule

Description

An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for Windows 8 and 10.

Exploits (2)

exploitdb WORKING POC

by Fidus InfoSecurity · pythonlocalwindows_x86-64

https://www.exploit-db.com/exploits/44168

View Code ZIP pw:eip

exploitdb WORKING POC

by Fidus InfoSecurity · clocalwindows_x86

https://www.exploit-db.com/exploits/44167

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/44167/

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/44168/

[Third Party Advisory] https://www.fidusinfosec.com/nomachine-road-code-execution-without-fuzzing-cve-2018-6947/

[Vendor Advisory] https://www.nomachine.com/SU02P00194

[Vendor Advisory] https://www.nomachine.com/SU02P00195

[Vendor Advisory] https://www.nomachine.com/TR02P08408

Scores

CVSS v3 7.8

EPSS 0.0177

EPSS Percentile 82.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-665

Status published

Products (4)

microsoft/windows_10

microsoft/windows_7

microsoft/windows_8

nomachine/nomachine < 6.0.66_2

Published Feb 28, 2018

Tracked Since Feb 18, 2026