Knowledge Base
All KB
Documents DT Documents
Articles & FAQs AR Articles
Trouble Reports TR Trouble Reports
Software Updates SU Software Updates
Searching in : Trouble report
ID:TR02X11711
Added on: 2026-02-09
Last Update: 2026-04-16
Solved in version: 9.4.14 and 8.22.1
Platform: All Platforms
Product: NoMachine Server
Severity: Serious
Status: Solved
Print this article

Possible privilege escalation via a valid Kerberos cache file (CVE-2026-5054)

The following problem has been reported by https://www.zerodayinitiative.com/advisories/ZDI-26-248/ and assigned with CVE-2026-5054.

A possible privilege escalation could lead to overwrite or copy arbitrary files on the system via a valid Kerberos cache file.

This issue affected NoMachine v9 and v8. It is now fixed in v9.4.14 https://kb.nomachine.com/SU03X00271 and v8.22.1 https://kb.nomachine.com/SU04X00273.

 

 

SOLVED, Released in version 9.4.14 and 8.22.1