{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T15:17:39.321","vulnerabilities":[{"cve":{"id":"CVE-2018-13441","sourceIdentifier":"cve@mitre.org","published":"2018-07-12T18:29:00.420","lastModified":"2024-11-21T03:47:06.000","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"qh_help in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket."},{"lang":"es","value":"qh_help en Nagios Core en versiones 4.4.1 y anteriores es propenso a una vulnerabilidad de desreferencia de puntero NULL que permite que un atacante provoque una condición de denegación de servicio (DoS) local mediante el envío de una carga útil manipulada al socket UNIX en escucha."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:N/I:N/A:P","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:nagios:nagios:*:*:*:*:*:*:*:*","versionEndIncluding":"4.4.1","matchCriteriaId":"EF320AFD-B04D-47F8-9DC0-0B3722FF8E5E"}]}]}],"references":[{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00014.html","source":"cve@mitre.org"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00022.html","source":"cve@mitre.org"},{"url":"https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://knowledge.opsview.com/v5.3/docs/whats-new","source":"cve@mitre.org","tags":["Release Notes"]},{"url":"https://knowledge.opsview.com/v5.4/docs/whats-new","source":"cve@mitre.org","tags":["Release Notes"]},{"url":"https://www.exploit-db.com/exploits/45082/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00014.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00022.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://knowledge.opsview.com/v5.3/docs/whats-new","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://knowledge.opsview.com/v5.4/docs/whats-new","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://www.exploit-db.com/exploits/45082/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]}]}}]}