Lucene search
K

Synology DiskStation Manager NTPD Denial of Service (CVE-2018-7184)

🗓️ 01 Oct 2024 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 26 Views

Synology DiskStation Manager NTPD Denial of Service vulnerabilit

Related
Refs
Code
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: Using Components with Known Vulnerabilities affects IBM Security Guardium (multiple CVEs)
16 Jun 201821:41
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in ntp affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems
7 Dec 202322:30
ibm
IBM Security Bulletins
IBM Security Network Protection / IBM QRadar Network Security / XGS Technote Index
31 Jan 202100:10
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in Network Time Protocol(NTP) affect WebSphere DataPower XC10 Appliance (CVE-2016-5300, CVE-2015-7704, CVE-2015-8138)
15 Jun 201807:05
ibm
IBM Security Bulletins
Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in NTP
7 Dec 202322:31
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in NTP, OpenSSL and Intel CPU's affect IBM Netezza Firmware Diagnostics.
18 Oct 201903:10
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities in ntp affect PowerKVM
18 Jun 201801:32
ibm
IBM Security Bulletins
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple ntp vulnerabilities
18 Jun 201801:32
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru firmware, QLogic 8Gb Intelligent Pass-thru Module and SAN Switch Module and QLogic Virtual Fabric Extension Module
31 Jan 201902:25
ibm
IBM Security Bulletins
Security Bulletin: Vulnerabilities in NTP affect QLogic 8Gb Intelligent Pass-thru Module and SAN Switch Module for IBM BladeCenter and IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru
7 Dec 202322:31
ibm
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(502449);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/10/02");

  script_cve_id("CVE-2018-7184");

  script_name(english:"Synology DiskStation Manager NTPD Denial of Service (CVE-2018-7184)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating
the received timestamp, which allows remote attackers to cause a
denial of service (disruption) by sending a packet with a zero-origin
timestamp causing the association to reset and setting the contents of
the packet as the most recent timestamp. This issue is a result of an
incomplete fix for CVE-2015-7704.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  # http://packetstormsecurity.com/files/146631/Slackware-Security-Advisory-ntp-Updates.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?61e2c8cb");
  script_set_attribute(attribute:"see_also", value:"http://support.ntp.org/bin/view/Main/NtpBug3453");
  script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/archive/1/541824/100/0/threaded");
  script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/bid/103192");
  script_set_attribute(attribute:"see_also", value:"https://security.FreeBSD.org/advisories/FreeBSD-SA-18:02.ntp.asc");
  script_set_attribute(attribute:"see_also", value:"https://security.gentoo.org/glsa/201805-12");
  script_set_attribute(attribute:"see_also", value:"https://security.netapp.com/advisory/ntap-20180626-0001/");
  # https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?547120eb");
  script_set_attribute(attribute:"see_also", value:"https://usn.ubuntu.com/3707-1/");
  script_set_attribute(attribute:"see_also", value:"https://www.synology.com/support/security/Synology_SA_18_13");
  script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-7184");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/03/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/03/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/10/01");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:synology:diskstation_manager");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Synology");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Synology');

var asset = tenable_ot::assets::get(vendor:'Synology');

var vuln_cpes = {
    "cpe:/a:synology:diskstation_manager" :
        {"versionEndExcluding" : "6.1.6-15266", "versionStartIncluding" : "5.2", "family" : "DiskStation"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_WARNING);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

02 Oct 2024 00:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 25
CVSS 3.17.5
CVSS 37.5
EPSS0.1095
26