Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-2644

Malware in sbrugna...

6.5CVSS6.5AI score0.03147EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2023/11/03 12:0 a.m.38 views

F5 Networks BIG-IP : NTP vulnerability (K82570157)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K82570157 advisory. - ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric k...

6.5CVSS6.9AI score0.03147EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.55 views

K82570157: NTP vulnerability CVE-2018-7170

Security Advisory Description ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This...

5.3CVSS7.4AI score0.02759EPSS
Exploits0Affected Software18
SUSE CVE
SUSE CVE
added 2023/02/15 5:8 a.m.6 views

SUSE CVE-2016-1549

A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock...

6.5CVSS6.8AI score0.03147EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2018/09/20 12:0 a.m.60 views

Amazon Linux AMI : ntp (ALAS-2018-1083)

ntpd in ntp 4.2.x before 4.2.8p7 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for...

9.8CVSS7.5AI score0.29037EPSS
Exploits6References3
Positive Technologies
Positive Technologies
added 2018/06/20 12:0 a.m.7 views

PT-2018-3864

Name of the Vulnerable Software and Affected Versions NTP version 4.2.8p11 Eltex ESR-200 affected versions not specified NTP affected versions not specified Description The issue is related to the implementation of the NTP protocol, which can lead to security restrictions being bypassed. An...

9.8CVSS7.9AI score0.2985EPSS
Exploits14References90
CNVD
CNVD
added 2018/03/08 12:0 a.m.2 views

NTP nptd Unauthorized Modification Vulnerability

NTP Network Time Protocol is a network protocol that synchronizes the clocks of two computers by exchanging packets. ntpd is an operating system daemon. A security vulnerability exists in nptd in versions 4.2.x prior to NTP 4.2.8p7 and 4.3.x prior to 4.3.92. An attacker can exploit this...

5.3CVSS6.8AI score0.02759EPSS
Exploits0References1
NVD
NVD
added 2018/03/06 8:29 p.m.21 views

CVE-2018-7170

ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an...

5.3CVSS6.3AI score0.02759EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2018/03/06 8:29 p.m.31 views

CVE-2018-7170

ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an...

5.3CVSS6.8AI score0.02759EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/03/06 8:0 p.m.23 views

CVE-2018-7170

ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an...

6.5AI score0.02759EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2018/02/28 12:0 a.m.58 views

FreeBSD : ntp -- multiple vulnerabilities (af485ef4-1c58-11e8-8477-d05099c0ae8c)

Network Time Foundation reports : The NTP Project at Network Time Foundation is releasing ntp-4.2.8p11. This release addresses five security issues in ntpd : - LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU961909: Sybil vulnerability: ephemeral association attack - INFO/MEDIUM: Sec 3412 / CVE-2018-718...

9.8CVSS7AI score0.2985EPSS
Exploits6References8
FreeBSD
FreeBSD
added 2018/02/27 12:0 a.m.65 views

ntp -- multiple vulnerabilities

Network Time Foundation reports: The NTP Project at Network Time Foundation is releasing ntp-4.2.8p11. This release addresses five security issues in ntpd: LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU961909: Sybil vulnerability: ephemeral association attack INFO/MEDIUM: Sec 3412 / CVE-2018-7182 /...

9.8CVSS8.1AI score0.2985EPSS
Exploits6References1
OSV
OSV
added 2017/01/06 9:59 p.m.4 views

DEBIAN-CVE-2016-1549

A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock...

6.5CVSS6.7AI score0.03147EPSS
Exploits1References1
OSV
OSV
added 2017/01/06 9:59 p.m.4 views

UBUNTU-CVE-2016-1549

A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock...

6.5CVSS6.8AI score0.03147EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2017/01/06 9:59 p.m.47 views

CVE-2016-1549

A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock...

6.5CVSS6.8AI score0.03147EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2016/04/28 12:0 a.m.8 views

PT-2016-3321 · Ntp +5 · Ntpd +7

Name of the Vulnerable Software and Affected Versions: ntpd versions prior to 4.2.8p4 NTPsec versions prior to a5fb34b9cc89b92a8fef2f459004865c93bb7f92 Description: A malicious authenticated peer can exploit an issue in the clock selection algorithm to modify a victim's clock. The issue is relate...

9.8CVSS6.4AI score0.97549EPSS
Exploits61References173
Talos
Talos
added 2016/04/26 12:0 a.m.40 views

Network Time Protocol Ephemeral Association Time Spoofing Vulnerability

SUMMARY ntpd is vulnerable to Sybil attacks. A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win ntpd’s clock selection algorithm and modify a victim’s clock. TESTED VERSIONS NTP 4.2.8p3 NTP 4.2.8p4 NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 NTPs...

6.5CVSS6.7AI score0.03147EPSS
Exploits1
Rows per page
Query Builder