8 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-38528
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. There is a missing limit for accepted NTS-KE connections. Thi...
DEBIAN-CVE-2025-58066
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. In versions between 1.2.0 and 1.6.1 inclusive servers which allow non-NTS traffic are affected by a denial of service vulnerability, where an attacker can induce a message storm between two NTP...
CVE-2024-38528
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. There is a missing limit for accepted NTS-KE connections. This allows an unauthenticated remote attacker to crash ntpd-rs when an NTS-KE server is configured. Non NTS-KE server configurations, such ...
CVE-2024-38528
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. There is a missing limit for accepted NTS-KE connections. This allows an unauthenticated remote attacker to crash ntpd-rs when an NTS-KE server is configured. Non NTS-KE server configurations, such ...
CVE-2024-38528 Unlimited number of NTS-KE connections can crash ntpd-rs server
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. There is a missing limit for accepted NTS-KE connections. This allows an unauthenticated remote attacker to crash ntpd-rs when an NTS-KE server is configured. Non NTS-KE server configurations, such ...
CVE-2024-38528
The CVE-2024-38528 vulnerability affects ntpd-rs, a tool implementing NTP/NTS. The issue is a missing limit for accepted NTS-KE connections, allowing an unauthenticated remote attacker to crash ntpd-rs when an NTS-KE server is configured (non-NTS-KE configurations are unaffected). The flaw is add...
PT-2024-28055 · Nptd-Rs · Nptd-Rs
Name of the Vulnerable Software and Affected Versions: nptd-rs versions prior to 1.1.3 Description: The issue is related to a missing limit for accepted NTS-KE connections in nptd-rs, a tool for synchronizing computer clocks that implements the NTP and NTS protocols. This allows an unauthenticate...
Denial Of Service (DoS)
NPTD is vulnerable to Denial Of Service DoS. The vulnerability is due when the server is not NTS-enabled no certificate, an attacker can submit a NTS-enabled client request, resulting in a server crash...