Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-11331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote...

8.1CVSS7.7AI score0.02637EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.23 views

RHEL 7 : ntp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ntp: Using port 123 for modes where a fixed port number is not required facilitates off-path attacks...

7.5AI score0.16351EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 6 : ntp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ntp: Using port 123 for modes where a fixed port number is not required facilitates off-path attacks...

7.3AI score0.16351EPSS
Exploits4References15
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.21 views

F5 Networks BIG-IP : NTP vulnerability (K09940637)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K09940637 advisory. Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not...

8.1CVSS7.3AI score0.02637EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:31 p.m.76 views

K09940637: NTP vulnerability CVE-2019-11331

Security Advisory Description Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks. CVE-2019-11331 Impact Using an off-path attack not a man-in-the-middle...

8.1CVSS7.2AI score0.02637EPSS
Exploits0Affected Software24
CVE
CVE
added 2019/04/18 9:58 p.m.133 views

CVE-2019-11331

CVE-2019-11331 concerns Network Time Protocol (NTP) implementations that use port 123 even when a fixed port isn’t required (per RFC 5905). The provided documents confirm an off‑path attack possibility due to port usage, describing it as enabling remote actors to conduct off‑path attacks against ...

8.1CVSS7.8AI score0.02637EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder