Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-7974

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers...

7.7CVSS7AI score0.05658EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.53 views

Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru Firmware, QLogic 8Gb Intelligent Pass-thru Module & SAN Switch Module and QLogic Virtual Fabric Extension Module for IBM BladeCenter

Summary The switch firmware deliverables listed below have addressed the applicable NTP CVEs. Vulnerability Details Summary The switch firmware deliverables listed below have addressed the applicable NTP CVEs. Vulnerability Details: CVE-ID: CVE-2014-9750 Description: NTP NTPd could allow a remote...

7.7CVSS7.5AI score0.11887EPSS
Exploits5Affected Software3
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.28 views

Debian: Security Advisory (DLA-559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7AI score0.15081EPSS
Exploits8References3
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.39 views

K13304944: NTP vulnerability CVE-2015-7974

Security Advisory Description NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key." CVE-2015-7974 Impact...

7.7CVSS7AI score0.05658EPSS
Exploits1Affected Software24
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2016:1278-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.15081EPSS
Exploits9References14
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:1175-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.1AI score0.11887EPSS
Exploits5References23
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:1247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits13References33
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2016:1568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.44936EPSS
Exploits9References22
Oracle linux
Oracle linux
added 2016/11/09 12:0 a.m.65 views

ntp security and bug fix update

4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...

7.7CVSS1.7AI score0.97549EPSS
Exploits31
Tenable Nessus
Tenable Nessus
added 2016/09/08 12:0 a.m.71 views

AIX 7.1 TL 3 : ntp (IV87615) (deprecated)

NTPv3 and NTPv4 are vulnerable to : https://vulners.com/cve/CVE-2015-7974 NTP could allow a remote authenticated attacker to conduct spoofing attacks, caused by a missing key check. An attacker could exploit this vulnerability to impersonate a peer. NTP could allow a local attacker to bypass...

7AI score0.44936EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2016/09/08 12:0 a.m.283 views

AIX 6.1 TL 9 : ntp (IV87419) (deprecated)

NTPv3 and NTPv4 are vulnerable to : https://vulners.com/cve/CVE-2015-7974 NTP could allow a remote authenticated attacker to conduct spoofing attacks, caused by a missing key check. An attacker could exploit this vulnerability to impersonate a peer. NTP could allow a local attacker to bypass...

7AI score0.44936EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2016/09/08 12:0 a.m.58 views

AIX 5.3 TL 12 : ntp (IV87614) (deprecated)

NTPv3 and NTPv4 are vulnerable to : https://vulners.com/cve/CVE-2015-7974 NTP could allow a remote authenticated attacker to conduct spoofing attacks, caused by a missing key check. An attacker could exploit this vulnerability to impersonate a peer. NTP could allow a local attacker to bypass...

7AI score0.44936EPSS
Exploits5References12
IBM AIX
IBM AIX
added 2016/09/06 9:7 a.m.589 views

Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS

ntpadvisory7.asc: Version 2 Version 2 Issued: Tue Sep 13 08:23:22 CDT 2016 Version 2 Changes: Changed the impacted upper level filesets listed for NTPv4. The new levels should match the prereqs as listed in the iFixes. IBM SECURITY ADVISORY First Issued: Tue Sep 6 09:07:16 CDT 2016 |Updated: Tue...

7.7CVSS7.7AI score0.44936EPSS
Exploits5
Debian
Debian
added 2016/07/25 9:37 p.m.53 views

[SECURITY] [DLA 559-1] ntp security update

Package : ntp Version : 1:4.2.6.p5+dfsg-2+deb7u7 CVE ID : CVE-2015-7974 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1547 CVE-2016-1548 CVE-2016-1550 CVE-2016-2516 CVE-2016-2518 Several vulnerabilities were discovered in the Network Time Protocol daemon and utili...

7.7CVSS7.1AI score0.15081EPSS
Exploits8
Debian
Debian
added 2016/07/25 9:15 p.m.52 views

[SECURITY] [DSA 3629-1] ntp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3629-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2016 https://www.debian.org/security/faq -...

7.7CVSS8.6AI score0.15081EPSS
Exploits8
OpenVAS
OpenVAS
added 2016/06/15 12:0 a.m.30 views

SUSE: Security Advisory for ntp (SUSE-SU-2016:1568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.44936EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2016/05/19 12:0 a.m.34 views

openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1329-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.3AI score0.15081EPSS
Exploits8References1
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.45 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1)

This network time protocol server ntp was updated to 4.2.8p6 to fix the following issues : Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way. - 'controlkey 1' is added...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References98
OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.47 views

openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.11887EPSS
Exploits4References1
Rows per page
Query Builder