Описание
An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can cause a NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Release NotesThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Release NotesThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.3 (исключая)
cpe:2.3:a:ntpsec:ntpsec:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.1167
Средний
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 6.5
ubuntu
около 7 лет назад
An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can cause a NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem.
CVSS3: 6.5
debian
около 7 лет назад
An issue was discovered in NTPsec before 1.1.3. An authenticated attac ...
CVSS3: 6.5
github
больше 3 лет назад
An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can cause a NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem.
EPSS
Процентиль: 93%
0.1167
Средний
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-476