High severity7.8NVD Advisory· Published Nov 16, 2017· Updated May 13, 2026

CVE-2017-16834

Description

PNP4Nagios through 0.6.26 has /usr/bin/npcd and npcd.cfg owned by an unprivileged account but root code execution depends on these files, which allows local users to gain privileges by leveraging access to this unprivileged account.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/lingej/pnp4nagios/issues/140nvdIssue TrackingPatchThird Party Advisory
security.gentoo.org/glsa/201806-09nvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000