Security Bulletin
This security bulletin contains one low risk vulnerability.
EUVDB-ID: #VU85867
Risk: Low
CVSSv3.1: 3.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-39107
CWE-ID:
CWE-62 - UNIX Hard Link
Exploit availability: No
DescriptionThe vulnerability allows a local user to overwrite arbitrary files on the system.
The vulnerability exists due to insecure permissions for the log directory in /Library/Application Support/NoMachine/var on macOS. A local user can create a hard link to a critical file on the system and overwrite it with root privileges, resulting in a denial of service attack.
Install updates from vendor's website.
Vulnerable software versionsNoMachine: before 8.8.1
CPE2.3 External linkshttp://kb.nomachine.com/SU07U00247
http://kb.nomachine.com/TR07U10948
http://www.ns-echo.com/posts/nomachine_afo.html
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.