CVE-2021-42973

NoMachine Server is affected by Integer Overflow. IOCTL Handler 0x22001B in the NoMachine Server above 4.0.346 and below 7.7.4 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.
Configurations

Configuration 1 (hide)

cpe:2.3:a:nomachine:server:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:28

Type Values Removed Values Added
References () https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/ - Exploit, Technical Description, Third Party Advisory () https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/ - Exploit, Technical Description, Third Party Advisory

Information

Published : 2021-12-07 20:15

Updated : 2024-11-21 06:28


NVD link : CVE-2021-42973

Mitre link : CVE-2021-42973

CVE.ORG link : CVE-2021-42973


JSON object : View

Products Affected

nomachine

  • server
CWE
CWE-190

Integer Overflow or Wraparound