VYPR
High severity7.8OSV Advisory· Published Jan 31, 2018· Updated Jun 17, 2026

CVE-2018-6384

CVE-2018-6384

Description

Unquoted Windows search path vulnerability in NSClient++ before 0.4.1.73 allows non-privileged local users to execute arbitrary code with elevated privileges on the system via a malicious program.exe executable in the %SYSTEMDRIVE% folder.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.