High severityNVD Advisory· Published Jun 10, 2026

CVE-2026-53694

Description

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Nomachine allows Argument Injection.This issue affects Nomachine: before 9.5.7, before 8.23.2.

Affected products

Nomachine/Nomachinellm-fuzzy
Range: <9.5.7, <8.23.2

Patches

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

kb.nomachine.com/SU05X00274nvd
kb.nomachine.com/SU05X00275nvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000