First published: Thu Jul 12 2018(Updated: )
qh_help in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Nagios Nagios | <=4.4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-13441 is a vulnerability in Nagios Core version 4.4.1 and earlier that allows an attacker to cause a local denial-of-service condition.
CVE-2018-13441 has a severity rating of 5.5 (medium).
CVE-2018-13441 affects Nagios Core version 4.4.1 and earlier.
An attacker can exploit CVE-2018-13441 by sending a crafted payload to the listening UNIX socket.
Yes, upgrading to a version of Nagios Core that is after 4.4.1 will fix CVE-2018-13441.