Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

ntp ntp 4.3.1 vulnerabilities and exploits

(subscribe to this query)
0.090
EPSS

CVE-2016-2519

ntpd in NTP prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows remote malicious users to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.
Ntp NtpNtp Ntp 4.3.0Ntp Ntp 4.3.1Ntp Ntp 4.3.2Ntp Ntp 4.3.3Ntp Ntp 4.3.4Ntp Ntp 4.3.5Ntp Ntp 4.3.6Ntp Ntp 4.3.7Ntp Ntp 4.3.8Ntp Ntp 4.3.9Ntp Ntp 4.3.10
0.040
EPSS

CVE-2015-7976

The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2Ntp NtpNtp Ntp 4.3.0Ntp Ntp 4.3.1Ntp Ntp 4.3.2Ntp Ntp 4.3.3Ntp Ntp 4.3.4Ntp Ntp 4.3.5Ntp Ntp 4.3.6Ntp Ntp 4.3.7Ntp Ntp 4.3.8Ntp Ntp 4.3.9
0.005
EPSS

CVE-2015-7975

The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp NtpNtp Ntp 4.3.0Ntp Ntp 4.3.1Ntp Ntp 4.3.2Ntp Ntp 4.3.3Ntp Ntp 4.3.4Ntp Ntp 4.3.5Ntp Ntp 4.3.6Ntp Ntp 4.3.7Ntp Ntp 4.3.8Ntp Ntp 4.3.10Ntp Ntp 4.3.11
0.832
EPSS

CVE-2015-7871

Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp NtpNtp Ntp 4.2.5Ntp Ntp 4.2.8Debian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -
0.004
EPSS

CVE-2013-5503

The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote malicious users to cause a denial of service (memory consumption) via UDP packets to listening ports, aka Bug ID CSCue69413.
Cisco Ios Xr 4.3.1
0.010
EPSS

CVE-2015-7851

Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp NtpNtp Ntp 4.2.8
0.484
EPSS

CVE-2015-7855

The decodenetnum function in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.
Ntp NtpNtp Ntp 4.2.8Debian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -Siemens Tim 4r-ie FirmwareSiemens Tim 4r-ie Dnp3 Firmware
0.414
EPSS

CVE-2015-7705

The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp NtpNtp Ntp 4.2.8Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -Citrix Xenserver 6.0.2Citrix Xenserver 6.2.0Citrix Xenserver 6.5Citrix Xenserver 7.0Siemens Tim 4r-ie FirmwareSiemens Tim 4r-ie Dnp3 Firmware
0.029
EPSS

CVE-2015-7849

Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp NtpNtp Ntp 4.2.8Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -
0.013
EPSS

CVE-2015-7850

ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.
Ntp NtpNtp Ntp 4.2.8Debian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Netapp Oncommand Balance -Netapp Oncommand Performance Manager -Netapp Oncommand Unified Manager -Netapp Clustered Data Ontap -Netapp Data Ontap -
Preferred Score:
EPSS
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
physicalprivilegeCVE-2025-26475cozystay - hotel booking wordpress themeCVE-2025-1316CVE-2024-27564CVE-2025-29137dellCVE-2025-25589hcl softwareloftoceaninjectCVE-2025-30140
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook