This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:ntp:ntp
Detail
VendorNtpFirst view 2004-08-06
ProductNtpLast view2019-05-15
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:ntp:ntp:4.2.258
cpe:/a:ntp:ntp:4.2.058
cpe:/a:ntp:ntp:4.2.2:p258
cpe:/a:ntp:ntp:4.2.2:p158
cpe:/a:ntp:ntp:4.2.2:p458
Hide | Show 45 More...
CPE NameAffected CVE
cpe:/a:ntp:ntp:4.2.2:p358
cpe:/a:ntp:ntp:4.2.457
cpe:/a:ntp:ntp:4.2.6:p4_rc257
cpe:/a:ntp:ntp:4.2.6:p4_rc157
cpe:/a:ntp:ntp:4.2.6:p257
cpe:/a:ntp:ntp:4.2.6:p157
cpe:/a:ntp:ntp:4.2.6:p457
cpe:/a:ntp:ntp:4.2.6:p357
cpe:/a:ntp:ntp:4.2.6:p557
cpe:/a:ntp:ntp:4.2.6:p3_rc457
cpe:/a:ntp:ntp:4.2.6:p3_rc357
cpe:/a:ntp:ntp:4.2.6:p3_rc257
cpe:/a:ntp:ntp:4.2.6:p3_rc157
cpe:/a:ntp:ntp:4.2.6:p3_rc757
cpe:/a:ntp:ntp:4.2.6:p3_rc657
cpe:/a:ntp:ntp:4.2.6:p3_rc557
cpe:/a:ntp:ntp:4.2.6:p3_rc957
cpe:/a:ntp:ntp:4.2.6:p3_rc857
cpe:/a:ntp:ntp:4.2.4:p857
cpe:/a:ntp:ntp:4.2.4:p057
cpe:/a:ntp:ntp:4.2.4:p257
cpe:/a:ntp:ntp:4.2.4:p157
cpe:/a:ntp:ntp:4.2.4:p457
cpe:/a:ntp:ntp:4.2.4:p357
cpe:/a:ntp:ntp:4.2.4:p657
cpe:/a:ntp:ntp:4.2.4:p557
cpe:/a:ntp:ntp:4.2.4:p757
cpe:/a:ntp:ntp:4.2.657
cpe:/a:ntp:ntp:4.2.4:p7_rc757
cpe:/a:ntp:ntp:4.2.4:p7_rc657
cpe:/a:ntp:ntp:4.2.4:p7_rc557
cpe:/a:ntp:ntp:4.2.4:p7_rc457
cpe:/a:ntp:ntp:4.2.4:p7_rc357
cpe:/a:ntp:ntp:4.2.4:p7_rc257
cpe:/a:ntp:ntp:4.2.6:p1_rc557
cpe:/a:ntp:ntp:4.2.4:p7_rc157
cpe:/a:ntp:ntp:4.2.6:p1_rc457
cpe:/a:ntp:ntp:4.2.6:p1_rc357
cpe:/a:ntp:ntp:4.2.6:p1_rc257
cpe:/a:ntp:ntp:4.2.6:p1_rc657
cpe:/a:ntp:ntp:4.2.6:p1_rc157
cpe:/a:ntp:ntp:4.2.6:p2_rc657
cpe:/a:ntp:ntp:4.2.6:p2_rc757
cpe:/a:ntp:ntp:4.2.6:p2_rc557
cpe:/a:ntp:ntp:4.2.6:p2_rc257

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52019-05-15CVE-2019-8936NetworkLowNone Requ...
6.82019-04-18CVE-2019-11331NetworkMediumNone Requ...
7.52018-06-20CVE-2018-12327NetworkLowNone Requ...
4.32018-06-04CVE-2016-9042NetworkMediumNone Requ...
7.52018-03-08CVE-2018-7183NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52018-03-06CVE-2018-7185NetworkLowNone Requ...
52018-03-06CVE-2018-7184NetworkLowNone Requ...
52018-03-06CVE-2018-7182NetworkLowNone Requ...
3.52018-03-06CVE-2018-7170NetworkMediumRequires ...
3.52017-08-24CVE-2015-5146NetworkMediumRequires ...
52017-08-09CVE-2015-3405NetworkLowNone Requ...
7.52017-08-07CVE-2015-7871NetworkLowNone Requ...
42017-08-07CVE-2015-7855NetworkLowRequires ...
6.52017-08-07CVE-2015-7854NetworkLowRequires ...
7.52017-08-07CVE-2015-7853NetworkLowNone Requ...
4.32017-08-07CVE-2015-7852NetworkMediumNone Requ...
42017-08-07CVE-2015-7850NetworkLowRequires ...
6.52017-08-07CVE-2015-7849NetworkLowRequires ...
7.52017-08-07CVE-2015-7705NetworkLowNone Requ...
52017-08-07CVE-2015-7704NetworkLowNone Requ...
42017-08-07CVE-2015-7702NetworkLowRequires ...
7.82017-08-07CVE-2015-7701NetworkLowNone Requ...
52017-08-07CVE-2015-7692NetworkLowNone Requ...
52017-08-07CVE-2015-7691NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
30% (25)CWE-20Improper Input Validation
18% (15)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
6% (5)CWE-254Security Features
4% (4)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')
4% (4)CWE-19Data Handling
Hide | Show 16 More...
%idName
4% (4)CWE-17Code
3% (3)CWE-476NULL Pointer Dereference
3% (3)CWE-399Resource Management Errors
3% (3)CWE-362Race Condition
2% (2)CWE-287Improper Authentication
2% (2)CWE-284Access Control (Authorization) Issues
2% (2)CWE-125Out-of-bounds Read
1% (1)CWE-787Out-of-bounds Write
1% (1)CWE-704Incorrect Type Conversion or Cast
1% (1)CWE-682Incorrect Calculation
1% (1)CWE-416Use After Free
1% (1)CWE-361Time and State
1% (1)CWE-331Insufficient Entropy
1% (1)CWE-200Information Exposure
1% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
1% (1)CWE-18Source Code

Open Source Vulnerability Database (OSVDB)

idDescription
60847NTP ntpd Mode 7 Request Crafted Packet Reply Loop Remote DoS
54576NTP ntpd/ntp_crypto.c crypto_recv() Function Remote Overflow
53593NTP ntpq/ntpq.c cookedprint() Function Remote Overflow
51164OpenSSL EVP_VerifyFinal Function DSA / ECDSA Key Validation Weakness
15975NTP ntpd Date/Time Request Remote Overflow

ExploitDB Exploits

idDescription
33073NTP ntpd monlist Query Reflection - Denial of Service

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-04-16Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates
File : nvt/gb_VMSA-2010-0009.nasl
2011-08-09Name : CentOS Update for ntp CESA-2009:1648 centos4 i386
File : nvt/gb_CESA-2009_1648_ntp_centos4_i386.nasl
2011-08-09Name : CentOS Update for ntp CESA-2009:1648 centos5 i386
File : nvt/gb_CESA-2009_1648_ntp_centos5_i386.nasl
2011-08-09Name : CentOS Update for ntp CESA-2009:1651 centos3 i386
File : nvt/gb_CESA-2009_1651_ntp_centos3_i386.nasl
2011-08-09Name : CentOS Update for ntp CESA-2009:0046 centos5 i386
File : nvt/gb_CESA-2009_0046_ntp_centos5_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for ntp CESA-2009:1039 centos5 i386
File : nvt/gb_CESA-2009_1039_ntp_centos5_i386.nasl
2011-06-06Name : HP-UX Update for XNTP HPSBUX02639
File : nvt/gb_hp_ux_HPSBUX02639.nasl
2010-05-12Name : Mac OS X 10.5.7 Update / Mac OS X Security Update 2009-002
File : nvt/macosx_upd_10_5_7_secupd_2009-002.nasl
2010-02-10Name : Debian Security Advisory DSA 1992-1 (chrony)
File : nvt/deb_1992_1.nasl
2010-01-11Name : FreeBSD Security Advisory (FreeBSD-SA-10:02.ntpd.asc)
File : nvt/freebsdsa_ntpd2.nasl
2010-01-07Name : Gentoo Security Advisory GLSA 201001-01 (ntp)
File : nvt/glsa_201001_01.nasl
2009-12-15Name : NTP mode 7 MODE_PRIVATE Packet Remote Denial of Service Vulnerability
File : nvt/ntp_37255.nasl
2009-12-14Name : CentOS Security Advisory CESA-2009:1648 (ntp)
File : nvt/ovcesa2009_1648.nasl
2009-12-14Name : CentOS Security Advisory CESA-2009:1651 (ntp)
File : nvt/ovcesa2009_1651.nasl
2009-12-14Name : Fedora Core 12 FEDORA-2009-13046 (ntp)
File : nvt/fcore_2009_13046.nasl
2009-12-14Name : Fedora Core 11 FEDORA-2009-13090 (ntp)
File : nvt/fcore_2009_13090.nasl
2009-12-14Name : Fedora Core 10 FEDORA-2009-13121 (ntp)
File : nvt/fcore_2009_13121.nasl
2009-12-14Name : RedHat Security Advisory RHSA-2009:1648
File : nvt/RHSA_2009_1648.nasl
2009-12-14Name : RedHat Security Advisory RHSA-2009:1651
File : nvt/RHSA_2009_1651.nasl
2009-12-14Name : Debian Security Advisory DSA 1948-1 (ntp)
File : nvt/deb_1948_1.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:309 (ntp)
File : nvt/mdksa_2009_309.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13Name : SLES10: Security update for xntp
File : nvt/sles10_xntp.nasl
2009-10-13Name : SLES10: Security update for xntp
File : nvt/sles10_xntp0.nasl
2009-10-13Name : Solaris Update for usr/sbin/ntpq 141396-01
File : nvt/gb_solaris_141396_01.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0150Multiple Security Vulnerabilities in Juniper Networks CTPView
Severity : Category I - VMSKEY : V0061073
2015-A-0113Multiple Vulnerabilities in Juniper Networks CTPOS
Severity : Category I - VMSKEY : V0060737
2015-A-0041Multiple Vulnerabilities in Network Time Protocol (NTP)
Severity : Category I - VMSKEY : V0058907

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2018-09-19ntpq decode array buffer overflow attempt
RuleID : 47585 - Type : SERVER-OTHER - Revision : 4
2018-05-22Multiple Vendors NTP zero-origin timestamp denial of service attempt
RuleID : 46387 - Type : SERVER-OTHER - Revision : 3
2018-03-23NTP crypto-NAK denial of service attempt
RuleID : 45693 - Type : SERVER-OTHER - Revision : 2
2018-05-23SSDP M-SEARCH ssdp-all potential amplified distributed denial-of-service attempt
RuleID : 45157-community - Type : SERVER-OTHER - Revision : 4
2018-01-11SSDP M-SEARCH ssdp-all potential amplified distributed denial-of-service attempt
RuleID : 45157 - Type : SERVER-OTHER - Revision : 4
Hide | Show 20 More...
DateDescription
2017-12-13NTP crypto-NAK denial of service attempt
RuleID : 44756 - Type : SERVER-OTHER - Revision : 3
2017-06-16ntpq flagstr buffer overflow attempt
RuleID : 42887 - Type : SERVER-OTHER - Revision : 3
2017-05-16NTP malformed config request denial of service attempt
RuleID : 42235 - Type : SERVER-OTHER - Revision : 3
2017-05-16NTP Config Unpeer denial of service attempt
RuleID : 42227 - Type : SERVER-OTHER - Revision : 3
2017-01-25NTPD zero origin timestamp denial of service attempt
RuleID : 41367 - Type : SERVER-OTHER - Revision : 5
2017-01-04ntpd mrulist control message command null pointer dereference attempt
RuleID : 40897 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40864 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40863 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40862 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40861 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40860 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40859 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40858 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40857 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40856 - Type : SERVER-OTHER - Revision : 3
2016-12-29ntpd mrulist control message command null pointer dereference attempt
RuleID : 40855 - Type : SERVER-OTHER - Revision : 3
2016-12-20NTP origin timestamp denial of service attempt
RuleID : 40811 - Type : SERVER-OTHER - Revision : 4
2016-03-14NTP crypto-NAK possible DoS attempt
RuleID : 37843 - Type : SERVER-OTHER - Revision : 4
2016-03-14ntpd reference clock impersonation attempt
RuleID : 37842 - Type : SERVER-OTHER - Revision : 4
2016-03-14ntpd reference clock impersonation attempt
RuleID : 37841 - Type : SERVER-OTHER - Revision : 4

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2019-1014.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-e585e25b72.nasl - Type : ACT_GATHER_INFO
2018-12-20Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-3854.nasl - Type : ACT_GATHER_INFO
2018-11-27Name : The remote Virtuozzo host is missing a security update.
File : Virtuozzo_VZLSA-2017-3071.nasl - Type : ACT_GATHER_INFO
2018-09-20Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1083.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2018-08-31Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0180.nasl - Type : ACT_GATHER_INFO
2018-08-31Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-2_0-0088.nasl - Type : ACT_GATHER_INFO
2018-08-20Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-229-01.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0003.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2017-0010.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote PhotonOS host is missing multiple security updates.
File : PhotonOS_PHSA-2018-1_0-0167.nasl - Type : ACT_GATHER_INFO
2018-08-17Name : The remote NTP server is affected by multiple vulnerabilities.
File : ntp_4_2_8p12.nasl - Type : ACT_GATHER_INFO
2018-05-29Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201805-12.nasl - Type : ACT_GATHER_INFO
2018-05-11Name : The remote Amazon Linux 2 host is missing a security update.
File : al2_ALAS-2018-1009.nasl - Type : ACT_GATHER_INFO
2018-05-11Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2018-1009.nasl - Type : ACT_GATHER_INFO
2018-04-27Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2018-0855.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20150408-ntpd-ios.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20150408-ntpd-iosxe.nasl - Type : ACT_GATHER_INFO
2018-03-09Name : The remote NTP server is affected by multiple vulnerabilities.
File : ntp_4_2_8p11.nasl - Type : ACT_GATHER_INFO
2018-03-02Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2018-060-02.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The version of Arista Networks EOS running on the remote device is affected b...
File : arista_eos_sa0019.nasl - Type : ACT_GATHER_INFO
2018-02-28Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_af485ef41c5811e88477d05099c0ae8c.nasl - Type : ACT_GATHER_INFO
2018-01-03Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL17114.nasl - Type : ACT_GATHER_INFO
2017-12-28Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL99254031.nasl - Type : ACT_GATHER_INFO
2017-12-21Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL02951273.nasl - Type : ACT_GATHER_INFO