Executive Summary

Informations
NameCVE-2019-11331First vendor Publication2019-04-18
VendorCveLast vendor Modification2019-05-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Network Time Protocol (NTP), as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11331

CWE : Common Weakness Enumeration

%idName
100 %CWE-254Security Features

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/108010
MISC https://tools.ietf.org/html/draft-gont-ntp-port-randomization-00

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2019-05-11 00:19:02
  • Multiple Updates
2019-04-20 00:19:10
  • Multiple Updates
2019-04-19 21:19:28
  • Multiple Updates
2019-04-19 05:18:06
  • First insertion