Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

BDU FSTEC
BDU FSTECadded 2020/06/22 12:0 a.m.2 views

The vulnerability of the enterprise-level catalog service 389 Directory Server, related to incorrect authentication, allows attackers to gain access to confidential data.

The vulnerability of the enterprise-level catalog service 389 Directory Server lies in the improper handling of comparison operations involving internal timestamps during authentication processes. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to...

5.9CVSS7.2AI score0.03901EPSS
Exploits0References6Affected Software7
OSV
OSVadded 2018/09/18 6:29 p.m.2 views

CVE-2018-17176

A replay issue was discovered on Neato Botvac Connected 2.2.0 devices. Manual control mode requires authentication, but once recorded, the authentication always transmitted in cleartext can be replayed to /bin/webserver on port 8081. There are no nonces, and timestamps are not checked at all...

7.5CVSS5.8AI score
Exploits0References1
Ubuntu
Ubuntuadded 2016/10/05 6:1 p.m.73 views

USN-3096-1: NTP vulnerabilities

Aanchal Malhotra discovered that NTP incorrectly handled authenticated broadcast mode. A remote attacker could use this issue to perform a replay attack. CVE-2015-7973 Matt Street discovered that NTP incorrectly verified peer associations of symmetric keys. A remote attacker could use this issue ...

7.8CVSS6.8AI score0.16055EPSS
Exploits13
Tenable Nessus
Tenable Nessusadded 2016/06/08 12:0 a.m.79 views

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p8 / 4.3.x < 4.3.93 Multiple Vulnerabilities

The version of the remote NTP server is 4.x prior to 4.2.8p8 or 4.3.x prior to 4.3.93. It is, therefore, affected by the following vulnerabilities : - A denial of service vulnerability exists when handling authentication due to improper packet timestamp checks. An unauthenticated, remote attacker...

7.5CVSS6.3AI score0.44936EPSS
Exploits1References12
CNVD
CNVDadded 2016/01/30 12:0 a.m.1 views

NTP Timestamp Bypass Vulnerability

NTP is a network protocol that synchronizes the clocks of two computers by exchanging packets. A security vulnerability in NTP allows a local attacker to perform a man-in-the-middle attack by sending packets with zero timestamps, bypassing the source timestamp restriction...

5.3CVSS6.2AI score0.06138EPSS
Exploits2References1
RedHat Linux
RedHat Linuxadded 2015/10/26 9:22 p.m.1 views

ntp: disabling synchronization via crafted KoD packet

It was discovered that ntpd as a client did not correctly check timestamps in Kiss-of-Death packets. A remote attacker could use this flaw to send a crafted Kiss-of-Death packet to an ntpd client that would increase the client's polling interval value, and effectively disable synchronization with...

7.5CVSS7.2AI score0.1095EPSS
Exploits0References5
Rows per page
Query Builder