CVE-2018-6947 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2018-6947?

CVE-2018-6947 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-6947?

Check the references section above for vendor advisories and patch information. Affected products include: Nomachine Nomachine, Microsoft Windows 10, Microsoft Windows 7, Microsoft Windows 8.

Vulnerability Description

An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for Windows 8 and 10.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Nomachine	Nomachine	<= 6.0.66_2
Microsoft	Windows 10	All versions
Microsoft	Windows 7	All versions
Microsoft	Windows 8	All versions

Related Weaknesses (CWE)

CWE-665

References

https://www.exploit-db.com/exploits/44167/Third Party AdvisoryVDB Entry
https://www.exploit-db.com/exploits/44168/Third Party AdvisoryVDB Entry
https://www.fidusinfosec.com/nomachine-road-code-execution-without-fuzzing-cve-2Third Party Advisory
https://www.nomachine.com/SU02P00194Vendor Advisory
https://www.nomachine.com/SU02P00195Vendor Advisory
https://www.nomachine.com/TR02P08408Vendor Advisory
https://www.exploit-db.com/exploits/44167/Third Party AdvisoryVDB Entry
https://www.exploit-db.com/exploits/44168/Third Party AdvisoryVDB Entry
https://www.fidusinfosec.com/nomachine-road-code-execution-without-fuzzing-cve-2Third Party Advisory
https://www.nomachine.com/SU02P00194Vendor Advisory
https://www.nomachine.com/SU02P00195Vendor Advisory
https://www.nomachine.com/TR02P08408Vendor Advisory

FAQ

What is CVE-2018-6947?

CVE-2018-6947 is a vulnerability with a CVSS score of 7.8 (HIGH). An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation...

How severe is CVE-2018-6947?

CVE-2018-6947 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-6947?

Check the references section above for vendor advisories and patch information. Affected products include: Nomachine Nomachine, Microsoft Windows 10, Microsoft Windows 7, Microsoft Windows 8.