1167 matches found
MiracleLinux 7 : ntp-4.2.6p5-19.3.0.1.el7.AXS7 (AXSA:2015-520:02)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-520:02 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...
MiracleLinux 7 : ntp-4.2.6p5-22.2.0.1.el7.AXS7 (AXSA:2016-476:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-476:01 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...
MiracleLinux 4 : ntp-4.2.6p5-5.2.0.1.AXS4 (AXSA:2015-521:05)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-521:05 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...
MiracleLinux 7 : ntp-4.2.6p5-29.0.1.el7.AXS7 (AXSA:2019-4330:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4330:01 advisory. ntp: Stack-based buffer overflow in ntpq and ntpdc allows denial of service or code execution CVE-2018-12327 Tenable has extracted the preceding description...
MiracleLinux 3 : ntp-4.2.2p1-9.1.1AXS3 (AXSA:2009-19:01)
The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-19:01 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. The ntp package contains utilities and daemons that...
CVE-2025-64091
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device...
CVE-2025-64091
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device...
CVE-2025-64091 Authenticated Remote Code Execution in the NTP-configuration
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device...
Zenitel ICX500和Zenitel ICX510 安全漏洞
The Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms from Zenitel Norway. A security vulnerability exists in the Zenitel ICX500 and Zenitel ICX510 that originates from an authenticated attacker being able to execute commands via the device's NTP configuration...
CVE-2020-36910
Summary: CVE-2020-36910 affects Cayin Signage Media Player 3.0. An authenticated remote command injection exists in the system.cgi and wizard_system.cgi pages, exploitable via the NTP_Server_IP parameter with default credentials to run arbitrary shell commands as root. The vulnerability has a hig...
PT-2026-21914
Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.3 Description A flaw exists in the NTS-KE protocol dissector within Wireshark. This issue can lead to a denial of service. Recommendations Update Wireshark to a version later than 4.6.3...
NTPsec < 0.9.7 Multiple Vulnerabilities
NTPsec is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntpsec:ntpsec"; ifdescription...
Astra Linux – Vulnerability in ntpsec
The vulnerability of the NTPsec network time protocol lies in reading data from buffers within acceptable limits. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...
Astra Linux – Vulnerability in ntpsec
The vulnerability of the ntsclientprocessresponse function in the ntpd/ntsclient.c component of the NTPsec time synchronization protocol is related to reading data from within a buffer that is beyond acceptable limits. Exploiting this vulnerability allows a remote attacker to cause a service...
VulnCheck KEV: CVE-2019-6443
An issue was discovered in NTPsec before 1.1.3. Because of a bug in ctlgetitem, there is a stack-based buffer over-read in readsysvars in ntpcontrol.c in ntpd...
SUSE-SU-2025:20862-1 Security update for chrony
This update for chrony fixes the following issues: - Update to version 4.8: Add maxunreach option to limit selection of unreachable sources Add -u option to chronyc to drop root privileges default chronyc user is set by configure script Fix refclock extpps option to work on Linux = 6.15 Validate...
CVE-2025-11653
A vulnerability was determined in UTT HiPER 2620G up to 3.1.4. Impacted is the function strcpy of the file /goform/fNTP. This manipulation of the argument NTPServerIP causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilize...
CVE-2025-11653 UTT HiPER 2620G fNTP strcpy buffer overflow
A vulnerability was determined in UTT HiPER 2620G up to 3.1.4. Impacted is the function strcpy of the file /goform/fNTP. This manipulation of the argument NTPServerIP causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilize...
CVE-2025-11653 UTT HiPER 2620G fNTP strcpy buffer overflow
A vulnerability was determined in UTT HiPER 2620G up to 3.1.4. Impacted is the function strcpy of the file /goform/fNTP. This manipulation of the argument NTPServerIP causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilize...
CVE-2025-11653
UTT HiPER 2620G (versions up to 3.1.4) has a buffer overflow in strcpy used by the /goform/fNTP NTPServerIP parameter. This can be triggered remotely, potentially allowing arbitrary code execution or service disruption. Public exploits have been disclosed and vendor contact regarding disclosure w...