GCVE - cpe:2.3:a:nomachine:enterprise_client:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:nomachine:enterprise_client:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Nomachine (`8035bc24-7bca-567f-88f9-ccf3bdd7f249`)
Product	Enterprise Client (`2ab9c19c-2f55-51d2-a976-a2de297b4408`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-39107`	vulnerable	2026-06-08 06:09:35.765194	Details available An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS before v8.8.1 allows attackers to overwrite root-owned files by using hardlinks. Published: 2023-08-04T00:00:00.000Z Updated: 2024-10-17T15:09:24.103Z Open on db.gcve.eu Reference links https://kb.nomachine.com/TR07U10948 https://kb.nomachine.com/SU07U00247 https://www.ns-echo.com/posts/nomachine_afo.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-42986`	vulnerable	2026-06-08 05:35:23.074742	Details available NoMachine Enterprise Client is affected by Integer Overflow. IOCTL Handler 0x22001B in the NoMachine Enterprise Client above 4.0.346 and below 7.7.4 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet. Published: 2021-12-07T19:39:42.000Z Updated: 2024-08-04T03:47:12.636Z Open on db.gcve.eu Reference links https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-42983`	vulnerable	2026-06-08 05:35:23.074230	Details available NoMachine Enterprise Client is affected by Buffer Overflow. IOCTL Handler 0x22001B in the NoMachine Enterprise Client above 4.0.346 and below 7.7.4 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet. Published: 2021-12-07T19:37:32.000Z Updated: 2024-08-04T03:47:13.125Z Open on db.gcve.eu Reference links https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.