CVE-2011-3977

2011-10-0410:55:10

mitre

web.nvd.nist.gov

cve-2011-3977

nomachine nx node

nx server

vulnerability

file read

security

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

5.1%

JSON

Unspecified vulnerability in nxconfigure.sh in NoMachine NX Node 3.x before 3.5.0-4 and NX Server 3.x before 3.5.0-5 allows local users to read arbitrary files via unknown vectors.

Affected configurations

Nvd

Node

nomachinenx_nodeMatch3.0.0

nomachinenx_nodeMatch3.4.0

nomachinenx_nodeMatch3.5.0

nomachinenx_serverMatch3.0.0

nomachinenx_serverMatch3.4.0

nomachinenx_serverMatch3.5.0

VendorProductVersionCPE
nomachinenx_node3.0.0cpe:2.3:a:nomachine:nx_node:3.0.0:*:*:*:*:*:*:*
nomachinenx_node3.4.0cpe:2.3:a:nomachine:nx_node:3.4.0:*:*:*:*:*:*:*
nomachinenx_node3.5.0cpe:2.3:a:nomachine:nx_node:3.5.0:*:*:*:*:*:*:*
nomachinenx_server3.0.0cpe:2.3:a:nomachine:nx_server:3.0.0:*:*:*:*:*:*:*
nomachinenx_server3.4.0cpe:2.3:a:nomachine:nx_server:3.4.0:*:*:*:*:*:*:*
nomachinenx_server3.5.0cpe:2.3:a:nomachine:nx_server:3.5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nomachine	nx_node	3.0.0	cpe:2.3:a:nomachine:nx_node:3.0.0:::::::*
nomachine	nx_node	3.4.0	cpe:2.3:a:nomachine:nx_node:3.4.0:::::::*
nomachine	nx_node	3.5.0	cpe:2.3:a:nomachine:nx_node:3.5.0:::::::*
nomachine	nx_server	3.0.0	cpe:2.3:a:nomachine:nx_server:3.0.0:::::::*
nomachine	nx_server	3.4.0	cpe:2.3:a:nomachine:nx_server:3.4.0:::::::*
nomachine	nx_server	3.5.0	cpe:2.3:a:nomachine:nx_server:3.5.0:::::::*