cbcvebase.
CVE-2018-7185
published 2018-03-06

CVE-2018-7185: The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a…

PriorityP341high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
9.24%
94.7th percentile
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.

Affected

54 ranges· showing 25
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debianntp< ntp 1:4.2.8p11+dfsg-1 (bullseye)ntp 1:4.2.8p11+dfsg-1 (bullseye)
debianntpsec< ntp 1:4.2.8p11+dfsg-1 (bullseye)ntp 1:4.2.8p11+dfsg-1 (bullseye)
hpehpux-ntp< c.4.2.8.4.0c.4.2.8.4.0
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp
ntpntp

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5LOW
vendor_redhat7.5HIGH
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.