261 matches found
CVE-2021-22212
ntpkeygen can generate keys that ntpd fails to parse. NTPsec 1.2.0 allows ntpkeygen to generate keys with '' characters. ntpd then either pads, shortens the key, or fails to load these keys entirely, depending on the key type and the placement of the ''. This results in the administrator not bein...
nippon-antenna RFNTPS 操作系统命令注入漏洞
The nippon-antenna RFNTPS is an application system from the Japanese company nippon-antenna. A ground receiving NTP server. RFNTPS suffers from an operating system command injection vulnerability. The vulnerability, which arises from improper handling of input validation by the program, could all...
CVE-2021-30166
The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission...
CVE-2021-30166
The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission...
Command injection
The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission...
CVE-2021-30166
CVE-2021-30166 affects Meri t Lilin IP cameras (MERIT LILIN ENT.CO.,LTD. P2/Z2/P3/Z3 series). The root cause is the NTP Server configuration function not being verified with special parameters, enabling a remote attacker with privileged access to perform a command injection and execute arbitrary ...
CVE-2021-30166 MERIT LILIN ENT.CO.,LTD. P2/Z2/P3/Z3 IP camera - Command Injection
The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission...
Vivotek VIVOTEK IP Camera 操作系统命令注入漏洞
Vivotek VIVOTEK IP Camera is an IP camera from Vivotek, Taiwan, China. The IP camera device suffers from an operating system command injection vulnerability, which originates from the NTP Server configuration not being verified with special parameters. This vulnerability can be exploited by a...
VulnCheck KEV: CVE-2020-9020
Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices allow the injection of OS commands into cgi-bin/timeconfig.py via shell metacharacters in the NTP Server field...
CVE-2020-25498
Cross Site Scripting XSS vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter...
CVE-2020-35262
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
Cross site scripting
Cross Site Scripting XSS vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter...
Cross site scripting
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
CVE-2020-25498
Cross Site Scripting XSS vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter...
CVE-2020-25498
CVE-2020-25498 affects Beetel router 777VR1, with a Stored XSS in the System Time NTP server name and URL Filter Keyword . Root cause is input validation/layered filtering gaps that allow script injection. Documented impact enables attackers to execute scripts in the admin session, potentially co...
CVE-2020-35262
CVE-2020-35262 affects Digisol DG-HR3400 with a Cross Site Scripting (XSS) vulnerability exploitable via the NTP configuration server name in the Time and date module and the Keyword field in URL Filter. Public details and CVSS metrics in NVD indicate a network-exploitable flaw (CVSS v3.1 base sc...
CVE-2020-35262
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
Exploit for Cross-site Scripting in Beetel 777Vr1_Firmware
CVE-2020-25498: Stored XSS via CSRF in Beetel 777VR1 Router...
GaussDB Kernel: Configuring an NTP Server
The Network Time Protocol NTP is used to synchronize time between clients and servers on the network. By configuring an NTP, you can synchronize the clock of a PC to the Coordinated Universal Time UTC and synchronize system clocks of multiple OSs. Copyright C 2020 Greenbone Networks GmbH Some tex...
How to Configure an NTP Server on a NetScaler Appliance
This article contains information about configuring a Network Time Protocol NTP server on a NetScaler appliance. Background In the earlier releases of the NetScaler software, you need to manually edit multiple files from the shell prompt of the NetScaler appliance to configure an NTP server. The...