Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.12 views

Astra Linux - уязвимость в ntp

In ntp 4.2.8p10, 4.2.8p11, 4.2.8p12, and 4.2.8p13, remote attackers can prevent a broadcast client from synchronizing its clock with a broadcast NTP server through soofed modes 3 and 5. The attacker must either be part of the same broadcast network or control a slave device in that broadcast...

5.3CVSS6.5AI score0.01954EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-4208

Malware in sbrugna...

7.5CVSS6.1AI score0.01497EPSS
Exploits0References13
F5 Networks
F5 Networksadded 2023/02/21 6:47 p.m.68 views

K13540723: NTP vulnerability CVE-2018-7184

Security Advisory Description ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service disruption by sending a packet with a zero-origin timestamp causing the association to reset and setting the...

7.5CVSS6.7AI score0.13128EPSS
Exploits0Affected Software5
Vulnrichment
Vulnrichmentadded 2020/04/17 3:31 a.m.3 views

CVE-2020-11868

ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp...

5.9CVSS7.5AI score0.01497EPSS
Exploits0References8
OSV
OSVadded 2016/10/05 6:1 p.m.0 views

USN-3096-1 ntp vulnerabilities

Aanchal Malhotra discovered that NTP incorrectly handled authenticated broadcast mode. A remote attacker could use this issue to perform a replay attack. CVE-2015-7973 Matt Street discovered that NTP incorrectly verified peer associations of symmetric keys. A remote attacker could use this issue ...

7.8CVSS6.8AI score0.42548EPSS
Exploits13References19
RedHat Linux
RedHat Linuxadded 2016/08/03 7:43 a.m.2 views

ntp: ntpd switching to interleaved mode with spoofed packets

It was found that an ntpd client could be forced to change from basic client/server mode to the interleaved symmetric mode. A remote attacker could use a spoofed packet that, when processed by an ntpd client, would cause that client to reject all future legitimate server responses, effectively...

7.2CVSS7.1AI score0.05403EPSS
Exploits3References6
OSV
OSVadded 2016/01/29 11:2 a.m.11 views

MGASA-2016-0039 Updated ntp packages fix security vulnerability

In ntpd before 4.2.8p6, when used with symmetric key encryption, the client would accept packets encrypted with keys for any configured server, allowing a server to impersonate other servers to clients, thus performing a man-in-the-middle attack. A server can be attacked by a client in a similar...

7.7CVSS7AI score0.42548EPSS
Exploits3References16
RedHat Linux
RedHat Linuxadded 2015/07/21 10:15 a.m.2 views

ntp: authentication doesn't protect symmetric associations against DoS attacks

A denial of service flaw was found in the way NTP hosts that were peering with each other authenticated themselves before updating their internal state variables. An attacker could send packets to one peer host, which could cascade to other peers, and stop the synchronization process among the...

4.3CVSS6.6AI score0.00729EPSS
Exploits0References4
Rows per page
Query Builder