NSClient++

CVE-2018–6384

Synopsis

This is a local privilege escalation issue on version 0.3.9. It was handled as a non-public zero-day exploit. Mitigation suggests to upgrade to version 0.4.1.72.

For those not familiar with NSClient++. It is an agent designed to work with Nagios and aims to be a secure monitoring daemon.