NSClient++
4 min readJun 11, 2021
CVE-2018–6384
Synopsis
This is a local privilege escalation issue on version 0.3.9. It was handled as a non-public zero-day exploit. Mitigation suggests to upgrade to version 0.4.1.72.
For those not familiar with NSClient++. It is an agent designed to work with Nagios and aims to be a secure monitoring daemon.