Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-4012

Published: 07/08/2023 Updated: 15/08/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Ntpsec

Vulnerability Summary

ntpd will crash if the server is not NTS-enabled (no certificate) and it receives an NTS-enabled client request (mode 3).

Vulnerable Product Search on Vulmon Subscribe to Product

ntpsec ntpsec 1.2.2

Vendor Advisories

Debian Security Advisories: DSA-5466-1 ntpsec -- security update
It was discovered that ntpd in ntpsec, a secure, hardened, and improved implementation derived from the original NTP project, could crash if NTS is disabled and an NTS-enabled client request (mode 3) is received For the stable distribution (bookworm), this problem has been fixed in version 122+dfsg1-1+deb12u1 We recommend that you upgrade your ...

References

NVD-CWE-noinfohttps://gitlab.com/NTPsec/ntpsec/-/issues/794https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038422https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VQDOZSTH2AZXBO2QAVR2SZEMK2A7WBRB/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OC2KDNL4GO7MDAFSNWBQA4T2Q2VNPUJD/https://nvd.nist.govhttps://www.debian.org/security/2023/dsa-5466
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook