GHSA-5mf2-6mvq-v64v

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.

Ссылки

EPSS

Процентиль: 90%

0.06064

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2015-8138

Дефекты

CWE-20

Связанные уязвимости

CVE-2015-8138

CVSS3: 5.3

ubuntu

больше 8 лет назад

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.

CVE-2015-8138

redhat

больше 9 лет назад

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.

CVE-2015-8138

CVSS3: 5.3

nvd

больше 8 лет назад

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.

CVE-2015-8138

CVSS3: 5.3

debian

больше 8 лет назад

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to ...

ELSA-2016-0063

oracle-oval

больше 9 лет назад

ELSA-2016-0063: ntp security update (IMPORTANT)

EPSS

Процентиль: 90%

0.06064

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2015-8138

Дефекты

CWE-20