CVE-2018-7185high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
References
http://packetstormsecurity.com/files/146631/Slackware-Security-Advisory-ntp-Updates.html
http://support.ntp.org/bin/view/Main/NtpBug3454
http://www.securityfocus.com/archive/1/541824/100/0/threaded
http://www.securityfocus.com/bid/103339
https://security.FreeBSD.org/advisories/FreeBSD-SA-18:02.ntp.asc
https://security.gentoo.org/glsa/201805-12
https://security.netapp.com/advisory/ntap-20180626-0001/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us
https://usn.ubuntu.com/3707-1/
https://usn.ubuntu.com/3707-2/
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
Details
Source: MITRE
Published: 2018-03-06
Updated: 2020-08-24
Type: NVD-CWE-noinfo
Risk Information
CVSS v2
Base Score: 5
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 10
Severity: MEDIUM
CVSS v3
Base Score: 7.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 3.9
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:-:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta4:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta5:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p10:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p5:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p6:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p7:*:*:*:*:*:*
Configuration 2
OR
cpe:2.3:a:synology:diskstation_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:synology:router_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:synology:skynas:*:*:*:*:*:*:*:*
cpe:2.3:a:synology:virtual_diskstation_manager:*:*:*:*:*:*:*:*
Configuration 3
AND
OR
OR
Configuration 4
OR
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Configuration 5
OR
Configuration 6
OR
Configuration 7
AND
OR
OR
Configuration 8
AND
OR
OR
Configuration 9
AND
OR
OR
Configuration 10
AND
OR
OR
Configuration 11
AND
OR
OR
Configuration 12
AND
OR
OR
Configuration 13
AND
OR
OR
Configuration 14
AND
OR
OR
Configuration 15
AND
OR
OR
Configuration 16
AND
OR
OR
Configuration 17
AND
OR
OR
Configuration 18
AND
OR
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 129259 | EulerOS 2.0 SP3 : ntp (EulerOS-SA-2019-2066) | Nessus | Huawei Local Security Checks | critical |
| 126847 | EulerOS 2.0 SP2 : ntp (EulerOS-SA-2019-1719) | Nessus | Huawei Local Security Checks | critical |
| 125010 | EulerOS Virtualization 3.0.1.0 : ntp (EulerOS-SA-2019-1557) | Nessus | Huawei Local Security Checks | critical |
| 124450 | EulerOS 2.0 SP5 : ntp (EulerOS-SA-2019-1323) | Nessus | Huawei Local Security Checks | critical |
| 123908 | EulerOS Virtualization 2.5.3 : ntp (EulerOS-SA-2019-1222) | Nessus | Huawei Local Security Checks | critical |
| 121863 | Photon OS 1.0: Ntp PHSA-2018-1.0-0167 | Nessus | PhotonOS Local Security Checks | critical |
| 118269 | SUSE SLES12 Security Update : ntp (SUSE-SU-2018:1765-2) | Nessus | SuSE Local Security Checks | critical |
| 111946 | Photon OS 1.0: Blktrace / Libmspack / Ntp / Openjdk / Perl / Systemd / Vim PHSA-2018-1.0-0167 (deprecated) | Nessus | PhotonOS Local Security Checks | critical |
| 110974 | Ubuntu 14.04 LTS / 16.04 LTS / 17.10 / 18.04 LTS : ntp vulnerabilities (USN-3707-1) | Nessus | Ubuntu Local Security Checks | critical |
| 110639 | SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2018:1765-1) | Nessus | SuSE Local Security Checks | critical |
| 110224 | SUSE SLES12 Security Update : ntp (SUSE-SU-2018:1464-1) | Nessus | SuSE Local Security Checks | critical |
| 110176 | GLSA-201805-12 : NTP: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
| 109697 | Amazon Linux AMI : ntp (ALAS-2018-1009) | Nessus | Amazon Linux Local Security Checks | critical |
| 109102 | openSUSE Security Update : ntp (openSUSE-2018-376) | Nessus | SuSE Local Security Checks | critical |
| 109085 | SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2018:0956-1) | Nessus | SuSE Local Security Checks | critical |
| 108651 | SUSE SLES11 Security Update : ntp (SUSE-SU-2018:0808-1) | Nessus | SuSE Local Security Checks | critical |
| 107258 | Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p11 Multiple Vulnerabilities | Nessus | Misc. | critical |
| 107103 | Slackware 14.0 / 14.1 / 14.2 / current : ntp (SSA:2018-060-02) | Nessus | Slackware Local Security Checks | high |
| 107046 | FreeBSD : ntp -- multiple vulnerabilities (af485ef4-1c58-11e8-8477-d05099c0ae8c) | Nessus | FreeBSD Local Security Checks | critical |