Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ntp vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2020-25498
Cross Site Scripting (XSS) vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time and "Keyword" in URL Filter.
Beetel 777vr1 Firmware -
1 Github repository
445
VMScore
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
383
VMScore
CVE-2020-35262
Cross Site Scripting (XSS) vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter.
Digisol Dg-hr3400 Firmware -
1 Github repository
516
VMScore
CVE-2021-22212
ntpkeygen can generate keys that ntpd fails to parse. NTPsec 1.2.0 allows ntpkeygen to generate keys with '#' characters. ntpd then either pads, shortens the key, or fails to load these keys entirely, depending on the key type and the placement of the '#'. Thi...
Ntpsec Ntpsec 1.2.0
Fedoraproject Fedora 34
890
VMScore
CVE-2020-9020
Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices allow the injection of OS commands into cgi-bin/timeconfig.py via shell metacharacters in the NTP Server field.
Iteris Vantage Velocity Firmware 2.3.1
Iteris Vantage Velocity Firmware 2.4.2
Iteris Vantage Velocity Firmware 3.0
445
VMScore
CVE-2018-5336
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth.
Wireshark Wireshark
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
356
VMScore
CVE-2015-1853
chrony prior to 1.31.1 does not properly protect state variables in authenticated symmetric NTP associations, which allows remote attackers with knowledge of NTP peering to cause a denial of service (inability to synchronize) via random timestamps in crafted NTP data packets.
Tuxfamily Chrony
383
VMScore
CVE-2014-5417
Cross-site scripting (XSS) vulnerability in Meinberg NTP Server firmware on LANTIME M-Series devices 6.15.019 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Meinberg Ntp Server Firmware -
Meinberg Lantime M600
Meinberg Lantime M900
Meinberg Lantime M3000
Meinberg Lantime M100
Meinberg Lantime M300
Meinberg Lantime M200
Meinberg Lantime M400
641
VMScore
CVE-2014-8651
The KDE Clock KCM policykit helper in kde-workspace prior to 4.11.14 and plasma-desktop prior to 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument.
Kde Plasma-desktop
Kde Kde-workspace
801
VMScore
CVE-2021-30166
The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission.
Meritlilin P2r8852e2 Firmware
Meritlilin P2r8852e4 Firmware
Meritlilin P2r6852e2 Firmware
Meritlilin P2r6852e4 Firmware
Meritlilin P2r6552e2 Firmware
Meritlilin P2r6552e4 Firmware
Meritlilin P2r6352ae2 Firmware
Meritlilin P2r6352ae4 Firmware
Meritlilin P2r3052ae2 Firmware
Meritlilin P2g1052 Firmware
Meritlilin P2r8822e2 Firmware
Meritlilin P2r8822e4 Firmware
Meritlilin P2r6822e2 Firmware
Meritlilin P2r6822e4 Firmware
Meritlilin P2r6522e2 Firmware
Meritlilin P2r6522e4 Firmware
Meritlilin P2r6322ae2 Firmware
Meritlilin P2r6322ae4 Firmware
Meritlilin P2r3022ae2 Firmware
Meritlilin P2g1022 Firmware
Meritlilin P2g1022x Firmware
Meritlilin Z2r8852ax Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »