Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-7603

Malware in sbrugna...

6.5CVSS7AI score0.05207EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2014-9297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with...

6.8CVSS7.8AI score0.06135EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.53 views

Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru Firmware, QLogic 8Gb Intelligent Pass-thru Module & SAN Switch Module and QLogic Virtual Fabric Extension Module for IBM BladeCenter

Summary The switch firmware deliverables listed below have addressed the applicable NTP CVEs. Vulnerability Details Summary The switch firmware deliverables listed below have addressed the applicable NTP CVEs. Vulnerability Details: CVE-ID: CVE-2014-9750 Description: NTP NTPd could allow a remote...

7.7CVSS7.5AI score0.11887EPSS
Exploits5Affected Software3
F5 Networks
F5 Networks
added 2023/02/21 7:28 p.m.63 views

K16392: NTP vulnerability CVE-2014-9750

Security Advisory Description The vallen packet value is not validated in several code paths in ntpcrypto.c which can lead to information leakage or a possible crash of ntpd. CVE-2014-9750 Note : The original candidate number referenced in this article, CVE-2014-9297, was rejected because it was...

5.8CVSS7.3AI score0.06135EPSS
Exploits0Affected Software20
SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.3 views

SUSE CVE-2015-7692

The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750...

7.5CVSS8AI score0.07336EPSS
Exploits0References12
Veracode
Veracode
added 2019/05/02 5:29 a.m.31 views

Denial Of Service (DoS)

ntp is vulnerable to denial of service. An incomplete fix for CVE-2014-9750 resulted in improper value length checks in ntpcrypto.c. A packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker could use a specially crafted...

6.5CVSS7.6AI score0.06135EPSS
Exploits0References14Affected Software1
Veracode
Veracode
added 2019/05/02 5:29 a.m.32 views

Denial Of Service (DoS)

ntp is vulnerable to denial of service. The fix for CVE-2014-9750 was incomplete which resulted in incorrect value length checks in ntpcrypto.c. A packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker could use a...

7.5CVSS7.6AI score0.07336EPSS
Exploits0References15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:30 a.m.23 views

Security Bulletin: Multiple vulnerabilities in Network Time Protocol (NTP) affect PowerKVM

Summary PowerKVM is affected by several vulnerabilities in Network Time Protocol NTP. These vulnerabilities are now fixed. Vulnerability Details CVEID: CVE-2014-9297 DESCRIPTION: Network Time Protocol NTP Project NTP daemon ntpd could allow a remote attacker to conduct spoofing attacks, caused by...

7.5CVSS0.8AI score0.06255EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:30 a.m.41 views

Security Bulletin: IBM Pure Power Integrated Manager (PPIM) is affected by vulnerabilities in ntp (CVE-2014-9750, CVE-2014-9751)

Summary Security vulnerabilities have been discovered in ntp embedded in the IBM PPIM. This bulletin addresses these issues. Vulnerability Details CVEID: CVE-2014-9750 DESCRIPTION: NTP NTPd could allow a remote attacker to obtain sensitive information, caused by an error in ntpcrypto.c when Autok...

6.8CVSS7.7AI score0.06135EPSS
Exploits0Affected Software1
Prion
Prion
added 2017/08/07 8:29 p.m.26 views

Code injection

The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750...

4CVSS7.4AI score0.06135EPSS
Exploits0References9Affected Software9
Prion
Prion
added 2017/08/07 8:29 p.m.23 views

Code injection

The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750...

5CVSS6.5AI score0.07336EPSS
Exploits0References10Affected Software9
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.62 views

Scientific Linux Security Update : ntp on SL7.x x86_64 (20161103)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.7CVSS7.3AI score0.12282EPSS
Exploits1References18
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.91 views

Moderate: Red Hat Security Advisory: ntp security and bug fix update

An update for ntp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.7CVSS7.2AI score0.12282EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.47 views

Scientific Linux Security Update : ntp on SL6.x i386/x86_64 (20160510)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.5CVSS7.3AI score0.12282EPSS
Exploits0References14
Cent OS
Cent OS
added 2016/05/16 10:19 a.m.89 views

ntp, ntpdate security update

CentOS Errata and Security Advisory CESA-2016:0780 An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.2AI score0.12282EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/12/02 12:0 a.m.51 views

CentOS 7 : ntp (CESA-2015:2231)

Updated ntp packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.5CVSS6.7AI score0.06135EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2015/11/24 12:0 a.m.37 views

Oracle: Security Advisory (ELSA-2015-2231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.1095EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/11/20 12:0 a.m.31 views

RedHat Update for ntp RHSA-2015:2231-04

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.06135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/11/02 12:0 a.m.43 views

Debian DSA-3388-1 : ntp - security update

Several vulnerabilities were discovered in the Network Time Protocol daemon and utility programs : - CVE-2015-5146 A flaw was found in the way ntpd processed certain remote configuration packets. An attacker could use a specially crafted package to cause ntpd to crash if : - ntpd enabled remote...

9.8CVSS7AI score0.81762EPSS
Exploits6References38
OSV
OSV
added 2015/10/22 12:0 a.m.2 views

UBUNTU-CVE-2015-7692

The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750...

7.5CVSS7.2AI score0.07336EPSS
Exploits0References4
Rows per page
Query Builder