Latest Ntp Vulnerabilities

● CVE-2023-26554

mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a '\0' character. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.

NTP ntp=4.2.8-p15

● CVE-2023-26552

mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a decimal point. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.

NTP ntp=4.2.8-p15

● CVE-2023-26555

praecis_parse in ntpd/refclock_palisade.c in NTP 4.2.8p15 has an out-of-bounds write. Any attack method would be complex, e.g., with a manipulated GPS receiver.

NTP ntp=4.2.8-p15

● CVE-2023-26553

mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when copying the trailing number. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.

NTP ntp=4.2.8-p15

● CVE-2023-26551

mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write in the cp<cpdec while loop. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.

NTP ntp=4.2.8-p15

● CVE-2020-15025

NTP is vulnerable to a denial of service, caused by a memory leak when a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file in ntpd. By sending specially-crafted packets, a rem...

IBM Data Risk Manager<=2.0.6

NTP ntp>=4.3.97<4.3.101

NTP ntp=4.2.8-p11

NTP ntp=4.2.8-p12

NTP ntp=4.2.8-p13

NTP ntp=4.2.8-p14

and 27 more

● CVE-2018-8956

ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets...

NTP ntp=4.2.8-p10

NTP ntp=4.2.8-p11

NTP ntp=4.2.8-p12

NTP ntp=4.2.8-p13

● CVE-2020-13817

NTP is vulnerable to a denial of service, caused by an issue when relying on unauthenticated IPv4 time sources in ntpd. By predicting transmit timestamps for use in spoofed packets, a remote attacker ...

IBM ISAM<=9.0.7

IBM Security Verify Access<=10.0.0

redhat/ntp<4.2.8

redhat/ntp<4.3.100

NTP ntp<4.2.8

NTP ntp>=4.3.0<4.3.100

and 72 more

● CVE-2015-7851

Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such a...

NTP ntp>=4.2.0<4.2.8

NTP ntp>=4.3.0<4.3.77

NTP ntp=4.2.8-p1

NTP ntp=4.2.8-p1-beta1

NTP ntp=4.2.8-p1-beta2

NTP ntp=4.2.8-p1-beta3

and 12 more

● CVE-2014-5209

An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.

NTP ntp=4.2.7-p25

F5 BIG-IP Access Policy Manager>=10.2.1<=10.2.4

F5 BIG-IP Access Policy Manager>=11.4.0<=11.6.4

F5 BIG-IP Access Policy Manager>=12.0.0<=12.1.4

F5 BIG-IP Access Policy Manager>=13.0.0<=13.1.1

F5 BIG-IP Access Policy Manager>=14.0.0<=14.1.0

and 71 more

● CVE-2020-11868

NTP is vulnerable to a denial of service, caused by a flaw in ntpd. By sending a server mode packet with a spoofed source IP address, a remote attacker could exploit this vulnerability to block unauth...

IBM ISAM<=9.0.7

IBM Security Verify Access<=10.0.0

redhat/ntp<4.2.8

redhat/ntp<4.3.100

NTP ntp<=4.2.7

NTP ntp>=4.3.98<4.3.100

and 52 more

● CVE-2019-8936

NTP through 4.2.8p12 has a NULL Pointer Dereference.

debian/ntp

ubuntu/ntp<1:4.2.8

and 37 more

● CVE-2019-11331

Network Time Protocol (NTP), as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks.

NTP ntp

● CVE-2018-12327

Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv...

ubuntu/ntp<1:4.2.8

ubuntu/ntp<1:4.2.6.

ubuntu/ntp<4.2.8

ubuntu/ntp<1:4.2.8

=4.2.8-p11

NTP ntp=4.2.8-p11

and 1 more

Latest Ntp Vulnerabilities

Company

Resources

Contact