Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:718152
HistoryApr 27, 2016 - 12:00 a.m.

NTP.org ntpd contains multiple vulnerabilities

2016-04-2700:00:00
www.kb.cert.org
56

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.873 High

EPSS

Percentile

98.6%

JSON

Overview

The NTP.org reference implementation of ntpd contains multiple vulnerabilities.

Description

NTP.org’s reference implementation of NTP server, ntpd, contains multiple vulnerabilities.

CWE-294**: Authentication Bypass by Capture-replay -**CVE-2015-7973

An attacker on the network can record and replay authenticated broadcast mode packets. Also known as the “Deja Vu” attack.

CWE-20**: Improper Input Validation -**CVE-2015-7974

A missing key check allows impersonation between authenticated peers. Also known as the “Skeleton Key” attack.

CWE-20**: Improper Input Validation -**CVE-2015-7975

The nextvar() function does not properly validate length.

CWE-20**: Improper Input Validation -**CVE-2015-7976

ntpq saveconfig command allows dangerous characters in filenames

CWE-476**: NULL Pointer Dereference -**CVE-2015-7977

reslist NULL pointer dereference

CWE-400**: Uncontrolled Resource Consumption (‘Resource Exhaustion’) -**CVE-2015-7978

Stack exhaustion in recursive traversal of restriction list

CWE-821**: Incorrect Synchronization -**CVE-2015-7979

Off-path Denial of Service (DoS) attack on authenticated broadcast and other pre-emptable modes

CWE-20**: Improper Input Validation -**CVE-2015-8138

Zero Origin Timestamp Bypass

CWE-200**: Information Exposure -**CVE-2015-8139

Network Time Protocol ntpq and ntpdc Origin Timestamp Disclosure Vulnerability
<http://support.ntp.org/bin/view/Main/NtpBug2946&gt;

CWE-294**: Authentication Bypass by Capture-replay -**CVE-2015-8140

Network Time Protocol ntpq Control Protocol Replay Vulnerability
<http://support.ntp.org/bin/view/Main/NtpBug2947&gt;

CWE-400**: Uncontrolled Resource Consumption (‘Resource Exhaustion’) -**CVE-2015-8158

Potential Infinite Loop in ntpq
<http://support.ntp.org/bin/view/Main/NtpBug2948&gt;

CWE-821**: Incorrect Synchronization -**CVE-2016-1547

An off-path attacker can deny service to ntpd clients by demobilizing preemptable associations using spoofed crypto-NAK packets. This vulnerability involves different code paths than those used by CVE-2015-7979.

CWE-290**: Authentication Bypass by Spoofing -**CVE-2016-1548

By spoofing packets from a legitimate server, an attacker can change the time of an ntpd client or deny service to an ntpd client by forcing it to change from basic client/server mode to interleaved symmetric mode.

CWE-362**: Concurrent Execution using Shared Resource with Improper Synchronization (‘Race Condition’) -**CVE-2016-1549

ntpd does not prevent Sybil attacks from authenticated peers. An malicious authenticated peer can create any number of ephemeral associations in order to win ntpd’s clock selection algorithm and modify a victim’s clock.

CWE-20**: Improper Input Validation -**CVE-2016-1550

ntpd does not use a constant-time memory comparison function when validating the authentication digest on incoming packets. In some situations this may allow an attacker to conduct a timing attack to compute the value of the valid authentication digest causing forged packets to be accepted by ntpd.

CWE-290**: Authentication Bypass by Spoofing -**CVE-2016-1551

ntpd does not filter IPv4 bogon packets received from the network. This allows unauthenticated network attackers to spoof refclock packets to ntpd processes on systems that do not implement bogon filtering.

CWE-20**: Improper Input Validation -**CVE-2016-2516, CVE-2016-2517

Duplicate IPs on unconfig directives will cause an assertion botch in ntpd. A regression caused by the patch for CVE-2016-2516 was fixed and identified as CVE-2016-2517.

CWE-125**: Out-of-bounds Read -**CVE-2016-2518

Using a crafted packet to create a peer association with hmode > 7 causes the MATCH_ASSOC() lookup to make an out-of-bounds reference.

CWE-119**: Improper Restriction of Operations within the Bounds of a Memory Buffer -**CVE-2016-2519

ntpq and ntpdc can be used to store and retrieve information in ntpd. It is possible to store a data value that is larger than the size of the buffer that the ctl_getitem() function of ntpd uses to report the return value. If the length of the requested data value returned by ctl_getitem() is too large, the value NULL is returned instead. There are 2 cases where the return value from ctl_getitem() was not directly checked to make sure it’s not NULL, but there are subsequent INSIST() checks that make sure the return value is not NULL. There are no data values ordinarily stored in ntpd that would exceed this buffer length. But if one has permission to store values and one stores a value that is “too large”, then ntpd will abort if an attempt is made to read that oversized value.

CWE-20**: Improper Input Validation -CVE-2015-7704,**CVE-2015-7705

An ntpd client that honors Kiss-of-Death (KoD) responses will honor KoD messages that have been forged by an attacker, causing it to delay or stop querying its servers for time updates. Also, an attacker can forge packets that claim to be from the target and send them to servers often enough that a server that implements KoD rate limiting will send the target machine a KoD response to attempt to reduce the rate of incoming packets, or it may also trigger a firewall block at the server for packets from the target machine. For either of these attacks to succeed, the attacker must know what servers the target is communicating with. An attacker can be anywhere on the Internet and can frequently learn the identity of the target’s time source by sending the target a time query.

For more information on these vulnerabilities, please see NTP.org’s April 2016 security advisory as well as the January 2016 security advisory.

Impact

Unauthenticated remote attackers may be able to spoof packets to cause denial of service, authentication bypass on commands, or certain configuration changes. For more information on these vulnerabilities, please see NTP.org’s April 2016 security advisory as well as the January 2016 security advisory.

Solution

Apply an update

Partial patches for some of these issues were initially released in January 2016 as version 4.2.8p6. Complete patches for all of these issues are now available in version 4.2.8p7, released 2016-04-26. Affected users are encouraged to update as soon as possible.

Vendor Information

718152

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

NTP Project Affected

Notified: January 19, 2016 Updated: April 22, 2016

Statement Date: April 19, 2016

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

ACCESS Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

AT&T Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Alcatel-Lucent Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Apple Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Arista Networks, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Aruba Networks Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Avaya, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Belkin, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Blue Coat Systems Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

CA Technologies Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

CentOS Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Check Point Software Technologies Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Cisco Unknown

Notified: January 08, 2016 Updated: January 08, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

CoreOS Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

D-Link Systems, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Debian GNU/Linux Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

DesktopBSD Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

DragonFly BSD Project Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

EMC Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

EfficientIP SAS Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Enterasys Networks Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Ericsson Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Extreme Networks Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

F5 Networks, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Fedora Project Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Force10 Networks Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

FreeBSD Project Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Gentoo Linux Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Google Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Hardened BSD Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Hewlett Packard Enterprise Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Hitachi Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Huawei Technologies Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

IBM Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

IBM eServer Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Infoblox Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Intel Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Internet Systems Consortium Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Internet Systems Consortium - DHCP Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Juniper Networks Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

McAfee Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Microsoft Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

NEC Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

NTPsec Unknown

Notified: January 19, 2016 Updated: January 19, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

NetBSD Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Nokia Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Nominum Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

OmniTI Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

OpenBSD Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

OpenDNS Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Openwall GNU/*/Linux Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Oracle Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Peplink Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Q1 Labs Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

QNX Software Systems Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Red Hat, Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

SUSE Linux Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

SafeNet Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Secure64 Software Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Slackware Linux Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

SmoothWall Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Snort Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Sony Corporation Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Sourcefire Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Symantec Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

TippingPoint Technologies Inc. Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Turbolinux Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Ubuntu Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Unisys Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

VMware Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

Wind River Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

dnsmasq Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

m0n0wall Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

openSUSE project Unknown

Notified: April 25, 2016 Updated: April 25, 2016

Status

Unknown

Vendor Statement

We have not received a statement from the vendor.

Vendor References

View all 75 vendors __View less vendors __

CVSS Metrics

Group Score Vector
Base 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P
Temporal 5.3 E:POC/RL:OF/RC:C
Environmental 5.3 CDP:ND/TD:H/CR:ND/IR:ND/AR:ND

References

Acknowledgements

Thanks to Cisco TALOS for reporting many of these issues to us. The Network Time Foundation credits many researchers for these vulnerabilities; see NTP.org’s January 2016 and April 2016 security advisories for the complete list.

This document was written by Garret Wassermann.

Other Information

CVE IDs: CVE-2015-7704, CVE-2015-7705, CVE-2015-7973, CVE-2015-7974, CVE-2015-7975, CVE-2015-7976, CVE-2015-7977, CVE-2015-7978, CVE-2015-7979, CVE-2015-8138, CVE-2015-8139, CVE-2015-8140, CVE-2015-8158, CVE-2016-1547, CVE-2016-1548, CVE-2016-1549, CVE-2016-1550, CVE-2016-1551, CVE-2016-2516, CVE-2016-2517, CVE-2016-2518, CVE-2016-2519
Date Public: 2016-04-26 Date First Published:

Related

openvas 29
nessus 66
ibm 19
freebsd 2
freebsd_advisory 2
osv 2
debian 2
cisco 2
suse 12
mageia 2
symantec 1
arista 1
paloalto 1
slackware 2
fortinet 1
ubuntu 1
fedora 5
aix 2
cloudfoundry 1
amazon 2
centos 2
oraclelinux 3
redhat 3
rosalinux 1
ics 2
gentoo 1
talos 3
ubuntucve 8
seebug 1
f5 11
cve 3
debiancve 2
prion 3
citrix 1
openvas
openvas
NTP.org 'ntpd' Multiple Vulnerabilities - Apr16
2016-04-28 00:00:00
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 2016
2016-05-09 00:00:00
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 2016
2016-05-18 00:00:00
nessus
nessus
Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p6 Multiple Vulnerabilities
2016-01-21 00:00:00
Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p7 Multiple Vulnerabilities
2016-05-05 00:00:00
Debian DSA-3629-1 : ntp - security update
2016-07-27 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in NTP affect IBM Flex System Chassis Management Module
2019-01-31 02:25:02
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple ntp vulnerabilities
2018-06-18 01:32:57
Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru, QLogic 8Gb Intelligent Pass-thru Module & SAN Switch Module for BladeCenter and QLogic Virtual Fabric Extension Module for IBM BladeCenter
2023-04-14 14:32:25
freebsd
freebsd
ntp -- multiple vulnerabilities
2016-01-20 00:00:00
ntp -- multiple vulnerabilities
2016-04-26 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:09.ntp
2016-01-27 00:00:00
FreeBSD-SA-16:16.ntp
2016-04-29 00:00:00
osv
osv
ntp - security update
2016-07-25 00:00:00
ntp - security update
2016-07-25 00:00:00
debian
debian
[SECURITY] [DLA 559-1] ntp security update
2016-07-25 21:37:14
[SECURITY] [DSA 3629-1] ntp security update
2016-07-25 21:15:32
cisco
cisco
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 2016
2016-01-27 20:00:00
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: April 2016
2016-04-28 09:00:00
suse
suse
Security update for ntp (important)
2016-06-01 18:08:21
Security update for ntp (important)
2016-05-11 18:08:42
Security update for ntp (important)
2016-05-18 14:10:13
mageia
mageia
Updated ntp packages fix security vulnerability
2016-01-29 14:02:50
Updated ntp packages fix security vulnerabilities
2016-05-14 00:54:49
symantec
symantec
SA113 : January 2016 NTP Security Vulnerabilities
2016-03-03 08:00:00
arista
arista
Security Advisory 0019
2018-04-25 00:00:00
paloalto
paloalto
NTP Vulnerabilities
2016-08-15 00:00:00
slackware
slackware
[slackware-security] ntp
2016-04-29 21:57:25
[slackware-security] ntp
2016-02-23 19:51:20
fortinet
fortinet
ntp-4.2.8p7 Security Vulnerability Announcement April 2016
2017-04-03 00:00:00
ubuntu
ubuntu
NTP vulnerabilities
2016-10-05 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: ntp-4.2.6p5-36.fc23
2016-01-30 18:28:19
[SECURITY] Fedora 24 Update: ntp-4.2.6p5-40.fc24
2016-05-07 12:19:50
[SECURITY] Fedora 23 Update: ntp-4.2.6p5-40.fc23
2016-05-10 18:06:26
aix
aix
Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS
2016-06-08 13:17:48
Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS
2016-09-06 09:07:16
cloudfoundry
cloudfoundry
USN-3096-1: NTP vulnerabilities | Cloud Foundry
2016-12-21 00:00:00
amazon
amazon
Important: ntp
2016-02-09 13:30:00
Medium: ntp
2016-06-02 18:06:00
centos
centos
ntp, ntpdate, sntp security update
2016-05-31 10:58:56
ntp, ntpdate, sntp security update
2016-11-25 16:00:55
oraclelinux
oraclelinux
ntp security update
2016-05-31 00:00:00
ntp security and bug fix update
2016-11-09 00:00:00
ntp security update
2017-10-26 00:00:00
redhat
redhat
(RHSA-2016:1141) Moderate: ntp security update
2016-05-31 05:04:27
(RHSA-2016:1552) Moderate: ntp security update
2016-08-03 04:36:58
(RHSA-2016:2583) Moderate: ntp security and bug fix update
2016-11-03 06:07:15
rosalinux
rosalinux
Advisory ROSA-SA-2021-1932
2021-07-02 17:35:16
ics
ics
Siemens TIM 4R-IE Devices
2021-04-13 12:00:00
Siemens SIMATIC NET CP 443-1 OPC UA
2021-06-08 12:00:00
gentoo
gentoo
NTP: Multiple vulnerabilities
2016-07-20 00:00:00
talos
talos
Network Time Protocol Control Mode Unauthenticated Trap Information Disclosure and DDoS Amplification Vulnerability
2016-11-21 00:00:00
Network Time Protocol ntpq and ntpdc Origin Timestamp Disclosure Vulnerability
2016-01-19 00:00:00
Network Time Protocol Deja Vu: Broadcast Mode Replay Vulnerability
2016-01-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-7705
2015-10-22 00:00:00
CVE-2015-7978
2015-12-31 00:00:00
CVE-2015-8138
2015-12-31 00:00:00
seebug
seebug
Network Time Protocol Control Mode Unauthenticated Trap Information Disclosure and DDoS Amplification Vulnerability(CVE-2016-9310)
2017-10-11 00:00:00
f5
f5
K06288381 : NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978
2016-02-22 00:00:00
SOL00329831 - Multiple NTP vulnerabilities CVE-2015-8139 and CVE-2015-8140
2016-02-29 00:00:00
SOL06288381 - NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978
2016-02-22 00:00:00
cve
cve
CVE-2016-2517
2017-01-30 21:59:00
CVE-2015-7705
2017-08-07 20:29:00
CVE-2015-7974
2016-01-26 19:59:00
debiancve
debiancve
CVE-2016-2517
2017-01-30 21:59:00
CVE-2015-7705
2017-08-07 20:29:00
prion
prion
Authentication flaw
2017-01-30 21:59:00
Code injection
2017-08-07 20:29:00
Design/Logic Flaw
2017-01-30 21:59:00
citrix
citrix
Citrix XenServer Multiple Security Updates
2017-01-25 05:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.873 High

EPSS

Percentile

98.6%

JSON
Related for VU:718152
openvas29nessus66ibm19freebsd2freebsd_advisory2osv2debian2cisco2suse12mageia2symantec1arista1paloalto1slackware2fortinet1ubuntu1fedora5aix2cloudfoundry1amazon2centos2oraclelinux3redhat3rosalinux1ics2gentoo1talos3ubuntucve8seebug1f511cve3debiancve2prion3citrix1