Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ntp ntp 4.3.77 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2015-7850
ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
6.5
CVSSv3
CVE-2015-7855
The decodenetnum function in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
1 EDB exploit
6.5
CVSSv3
CVE-2017-6463
NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.
Ntp Ntp 4.3.13
Ntp Ntp 4.3.14
Ntp Ntp 4.3.20
Ntp Ntp 4.3.21
Ntp Ntp 4.3.28
Ntp Ntp 4.3.29
Ntp Ntp 4.3.36
Ntp Ntp 4.3.37
Ntp Ntp 4.3.43
Ntp Ntp 4.3.44
Ntp Ntp 4.3.50
Ntp Ntp 4.3.51
Ntp Ntp 4.3.52
Ntp Ntp 4.3.59
Ntp Ntp 4.3.6
Ntp Ntp 4.3.66
Ntp Ntp 4.3.67
Ntp Ntp 4.3.74
Ntp Ntp 4.3.75
Ntp Ntp 4.3.81
Ntp Ntp 4.3.82
Ntp Ntp 4.3.89
6.5
CVSSv3
CVE-2017-6464
NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows remote malicious users to cause a denial of service (ntpd crash) via a malformed mode configuration directive.
Ntp Ntp 4.3.1
Ntp Ntp 4.3.10
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.32
Ntp Ntp 4.3.33
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.55
Ntp Ntp 4.3.56
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.71
Ntp Ntp 4.3.78
Ntp Ntp 4.3.79
Ntp Ntp 4.3.85
6.2
CVSSv3
CVE-2015-7975
The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
Ntp Ntp 4.3.78
5.9
CVSSv3
CVE-2016-2519
ntpd in NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows remote malicious users to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.
Ntp Ntp
Ntp Ntp 4.3.11
Ntp Ntp 4.3.12
Ntp Ntp 4.3.19
Ntp Ntp 4.3.2
Ntp Ntp 4.3.27
Ntp Ntp 4.3.28
Ntp Ntp 4.3.34
Ntp Ntp 4.3.35
Ntp Ntp 4.3.41
Ntp Ntp 4.3.42
Ntp Ntp 4.3.5
Ntp Ntp 4.3.50
Ntp Ntp 4.3.57
Ntp Ntp 4.3.58
Ntp Ntp 4.3.64
Ntp Ntp 4.3.65
Ntp Ntp 4.3.72
Ntp Ntp 4.3.73
Ntp Ntp 4.3.8
Ntp Ntp 4.3.80
Ntp Ntp 4.3.87
5.5
CVSSv3
CVE-2017-6459
The Windows installer for NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows local users to have unspecified impact via vectors related to an argument with multiple null bytes.
Ntp Ntp 4.3.14
Ntp Ntp 4.3.15
Ntp Ntp 4.3.21
Ntp Ntp 4.3.22
Ntp Ntp 4.3.29
Ntp Ntp 4.3.3
Ntp Ntp 4.3.30
Ntp Ntp 4.3.37
Ntp Ntp 4.3.38
Ntp Ntp 4.3.44
Ntp Ntp 4.3.45
Ntp Ntp 4.3.51
Ntp Ntp 4.3.52
Ntp Ntp 4.3.53
Ntp Ntp 4.3.6
Ntp Ntp 4.3.60
Ntp Ntp 4.3.67
Ntp Ntp 4.3.68
Ntp Ntp 4.3.75
Ntp Ntp 4.3.76
Ntp Ntp 4.3.82
Ntp Ntp 4.3.83
5.3
CVSSv3
CVE-2016-2516
NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92, when mode7 is enabled, allows remote malicious users to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.
Ntp Ntp
Ntp Ntp 4.3.90
Ntp Ntp 4.3.91
Ntp Ntp 4.3.14
Ntp Ntp 4.3.15
Ntp Ntp 4.3.22
Ntp Ntp 4.3.23
Ntp Ntp 4.3.3
Ntp Ntp 4.3.30
Ntp Ntp 4.3.37
Ntp Ntp 4.3.38
Ntp Ntp 4.3.45
Ntp Ntp 4.3.46
Ntp Ntp 4.3.52
Ntp Ntp 4.3.53
Ntp Ntp 4.3.6
Ntp Ntp 4.3.60
Ntp Ntp 4.3.68
Ntp Ntp 4.3.69
Ntp Ntp 4.3.75
Ntp Ntp 4.3.76
Ntp Ntp 4.3.82
5.3
CVSSv3
CVE-2016-2517
NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows remote malicious users to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, contr...
Ntp Ntp
Ntp Ntp 4.3.10
Ntp Ntp 4.3.11
Ntp Ntp 4.3.18
Ntp Ntp 4.3.19
Ntp Ntp 4.3.25
Ntp Ntp 4.3.26
Ntp Ntp 4.3.33
Ntp Ntp 4.3.34
Ntp Ntp 4.3.40
Ntp Ntp 4.3.41
Ntp Ntp 4.3.48
Ntp Ntp 4.3.49
Ntp Ntp 4.3.5
Ntp Ntp 4.3.56
Ntp Ntp 4.3.57
Ntp Ntp 4.3.63
Ntp Ntp 4.3.64
Ntp Ntp 4.3.71
Ntp Ntp 4.3.72
Ntp Ntp 4.3.79
Ntp Ntp 4.3.8
4.3
CVSSv3
CVE-2015-7976
The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2
Ntp Ntp
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5274
CVE-2024-35388
CVE-2024-35396
elevation of privilege
CVE-2021-47544
file upload
CVE-2021-47545
memory leak
CVE-2024-4956
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2