Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ntp vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2010-0292
The read_from_cmd_socket function in cmdmon.c in chronyd in Chrony prior to 1.23.1, and 1.24-pre1, allows remote malicious users to cause a denial of service (CPU and bandwidth consumption) by sending a spoofed cmdmon packet that triggers a continuous exchange of NOHOSTACCESS mes...
Tuxfamily Chrony 1.19
Tuxfamily Chrony 1.20
Tuxfamily Chrony
Tuxfamily Chrony 1.19.99.3
Tuxfamily Chrony 1.19-1
Tuxfamily Chrony 1.19.99.2
Tuxfamily Chrony 1.21-pre1
Tuxfamily Chrony 1.18
Tuxfamily Chrony 1.24-pre1
Tuxfamily Chrony 1.19.99.1
Tuxfamily Chrony 1.21
445
VMScore
CVE-2010-0293
The client logging functionality in chronyd in Chrony prior to 1.23.1 does not restrict the amount of memory used for storage of client information, which allows remote malicious users to cause a denial of service (memory consumption) via spoofed (1) NTP or (2) cmdmon packets.
Tuxfamily Chrony 1.19
Tuxfamily Chrony 1.20
Tuxfamily Chrony
Tuxfamily Chrony 1.19.99.3
Tuxfamily Chrony 1.19-1
Tuxfamily Chrony 1.19.99.2
Tuxfamily Chrony 1.21-pre1
Tuxfamily Chrony 1.18
Tuxfamily Chrony 1.24-pre1
Tuxfamily Chrony 1.19.99.1
Tuxfamily Chrony 1.21
445
VMScore
CVE-2010-0294
chronyd in Chrony prior to 1.23.1, and possibly 1.24-pre1, generates a syslog message for each unauthorized cmdmon packet, which allows remote malicious users to cause a denial of service (disk consumption) via a large number of invalid packets.
Tuxfamily Chrony 1.19
Tuxfamily Chrony 1.20
Tuxfamily Chrony
Tuxfamily Chrony 1.19.99.3
Tuxfamily Chrony 1.19-1
Tuxfamily Chrony 1.19.99.2
Tuxfamily Chrony 1.21-pre1
Tuxfamily Chrony 1.18
Tuxfamily Chrony 1.24-pre1
Tuxfamily Chrony 1.19.99.1
Tuxfamily Chrony 1.21
445
VMScore
CVE-2009-0021
NTP 4.2.4 prior to 4.2.4p5 and 4.2.5 prior to 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote malicious users to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, ...
Ntp Ntp 4.2.4p1
Ntp Ntp 4.2.2
Ntp Ntp 4.2.4p3
Ntp Ntp 4.2.4p2
Ntp Ntp
Ntp Ntp 4.2.0
445
VMScore
CVE-2006-0375
Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 on VxWorks uses a hardcoded Network Time Protocol (NTP) server in Taiwan, which could allow remote malicious users to provide false time information, block access to time information, or cond...
Advantage Century Telecommunication P202s 1.01.21 Firmware 1.1.21
445
VMScore
CVE-2004-0657
Integer overflow in the NTP daemon (NTPd) prior to 4.0 causes the NTP server to return the wrong date/time offset when a client requests a date/time that is more than 34 years away from the server's time.
Ntp Ntp
Hp Tru64 Unix 4.0f
Hp Tru64 Unix 4.0g
Hp Tru64 Unix 5.1b
Hp Tru64 Unix 51.1a
436
VMScore
CVE-2016-2517
NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows remote malicious users to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, contr...
Ntp Ntp
Ntp Ntp 4.3.10
Ntp Ntp 4.3.11
Ntp Ntp 4.3.18
Ntp Ntp 4.3.19
Ntp Ntp 4.3.25
Ntp Ntp 4.3.26
Ntp Ntp 4.3.33
Ntp Ntp 4.3.34
Ntp Ntp 4.3.40
Ntp Ntp 4.3.41
Ntp Ntp 4.3.48
Ntp Ntp 4.3.49
Ntp Ntp 4.3.5
Ntp Ntp 4.3.56
Ntp Ntp 4.3.57
Ntp Ntp 4.3.63
Ntp Ntp 4.3.64
Ntp Ntp 4.3.71
Ntp Ntp 4.3.72
Ntp Ntp 4.3.79
Ntp Ntp 4.3.8
436
VMScore
CVE-2016-2519
ntpd in NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows remote malicious users to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.
Ntp Ntp
Ntp Ntp 4.3.11
Ntp Ntp 4.3.12
Ntp Ntp 4.3.19
Ntp Ntp 4.3.2
Ntp Ntp 4.3.27
Ntp Ntp 4.3.28
Ntp Ntp 4.3.34
Ntp Ntp 4.3.35
Ntp Ntp 4.3.41
Ntp Ntp 4.3.42
Ntp Ntp 4.3.5
Ntp Ntp 4.3.50
Ntp Ntp 4.3.57
Ntp Ntp 4.3.58
Ntp Ntp 4.3.64
Ntp Ntp 4.3.65
Ntp Ntp 4.3.72
Ntp Ntp 4.3.73
Ntp Ntp 4.3.8
Ntp Ntp 4.3.80
Ntp Ntp 4.3.87
409
VMScore
CVE-2017-6451
The mx4200_send function in the legacy MX4200 refclock in NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds...
Ntp Ntp 4.3.0
Ntp Ntp 4.3.15
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.23
Ntp Ntp 4.3.24
Ntp Ntp 4.3.30
Ntp Ntp 4.3.31
Ntp Ntp 4.3.38
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.46
Ntp Ntp 4.3.47
Ntp Ntp 4.3.53
Ntp Ntp 4.3.54
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.69
Ntp Ntp 4.3.7
Ntp Ntp 4.3.76
Ntp Ntp 4.3.77
Ntp Ntp 4.3.84
409
VMScore
CVE-2017-6462
Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.10
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.32
Ntp Ntp 4.3.33
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.55
Ntp Ntp 4.3.56
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.78
Ntp Ntp 4.3.79
Ntp Ntp 4.3.85
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »