ZDI-26-249: NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2026-5055.
AI Analysis
Technical Summary
CVE-2026-5055 is a local privilege escalation vulnerability in NoMachine Device Server caused by an uncontrolled search path element. This flaw allows an attacker who already has low-privileged code execution on the system to escalate privileges by exploiting the product's loading of a library from an unsecured location. Successful exploitation results in arbitrary code execution with SYSTEM privileges. The vulnerability was reported to NoMachine on December 24, 2025, and publicly disclosed on March 30, 2026. NoMachine released a fix in version 9.4.14.
Potential Impact
Exploitation of this vulnerability allows a local attacker with limited code execution capabilities to escalate privileges to SYSTEM level, potentially leading to full control over the affected system. This can compromise confidentiality, integrity, and availability of the system and its data.
Mitigation Recommendations
Apply the official fix by upgrading NoMachine to version 9.4.14 or later, where this vulnerability has been addressed. NoMachine's advisory confirms the availability of this patch. No additional mitigation steps are required once the update is applied.
ZDI-26-249: NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Description
This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2026-5055.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-5055 is a local privilege escalation vulnerability in NoMachine Device Server caused by an uncontrolled search path element. This flaw allows an attacker who already has low-privileged code execution on the system to escalate privileges by exploiting the product's loading of a library from an unsecured location. Successful exploitation results in arbitrary code execution with SYSTEM privileges. The vulnerability was reported to NoMachine on December 24, 2025, and publicly disclosed on March 30, 2026. NoMachine released a fix in version 9.4.14.
Potential Impact
Exploitation of this vulnerability allows a local attacker with limited code execution capabilities to escalate privileges to SYSTEM level, potentially leading to full control over the affected system. This can compromise confidentiality, integrity, and availability of the system and its data.
Mitigation Recommendations
Apply the official fix by upgrading NoMachine to version 9.4.14 or later, where this vulnerability has been addressed. NoMachine's advisory confirms the availability of this patch. No additional mitigation steps are required once the update is applied.
Technical Details
- Article Source
- {"url":"http://www.zerodayinitiative.com/advisories/ZDI-26-249/","fetched":true,"fetchedAt":"2026-05-26T19:59:20.352Z","wordCount":177}
Threat ID: 6a15fc93e29bf47b5055e1a5
Added to database: 5/26/2026, 8:03:31 PM
Last enriched: 5/26/2026, 8:14:19 PM
Last updated: 5/27/2026, 5:02:08 AM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.