CVE-2015-8138Improper Input Validation in NTP

CWE-20Improper Input ValidationCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-200Sensitive Information ExposureCWE-287Improper AuthenticationCWE-399CWE-294Authentication Bypass by Capture-replayCWE-400Uncontrolled Resource Consumption33 documents11 sources
Severity
5.3MEDIUMNVD
OSV6.5
EPSS
1.3%
top 20.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
NTPDebian NTPPaloalto Pan-os
Timeline
PublishedJan 30
Latest updateMay 13

Description

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages5 packages

debiandebian/ntp< ntp 1:4.2.8p9+dfsg-1 (bullseye)+1
Debianntp/ntp< 1:4.2.8p9+dfsg-1+1
Ubuntuntp/ntp< 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10+1
NVDntp/ntp4.2.8+90
Palo Altopaloalto/pan-os

🔴Vulnerability Details

5
GHSA
GHSA-5mf2-6mvq-v64v: NTP before 42022-05-13
GHSA
GHSA-27gj-3475-hjqq: NTP before 42022-05-13
OSV
CVE-2015-8138: NTP before 42017-01-30
OSV
CVE-2016-7431: NTP before 42017-01-13
OSV
ntp vulnerabilities2016-10-05

📋Vendor Advisories

23
CISA ICS
Siemens SIMATIC NET CP 443-1 OPC UA2021-06-08
CISA ICS
Siemens TIM 4R-IE Devices2021-04-13
Cisco
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: November 20162016-11-23
Red Hat
ntp: Zero Origin timestamp regression2016-11-21
Ubuntu
NTP vulnerabilities2016-10-05

💬Community

3
Bugzilla
CVE-2016-9042 ntp: DoS via origin timestamp check functionality2017-03-20
Bugzilla
CVE-2015-7974 CVE-2015-8138 CVE-2015-7973 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8158 CVE-2015-8139 CVE-2015-8140 ntp: various flaws [fedora-all]2016-01-20
Bugzilla
CVE-2015-8138 ntp: missing check for zero originate timestamp2016-01-18