First published: Fri Feb 03 2023(Updated: )
An issue in NoMachine before v8.2.3 allows attackers to execute arbitrary commands via a crafted .nxs file.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
NoMachine NoMachine | <8.2.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this NoMachine issue is CVE-2022-48074.
The severity of CVE-2022-48074 is medium with a CVSS score of 5.3.
NoMachine versions up to and excluding 8.2.3 are affected by CVE-2022-48074.
An attacker can exploit CVE-2022-48074 by crafting a malicious .nxs file to execute arbitrary commands.
To fix CVE-2022-48074, update NoMachine to version 8.2.3 or higher.