Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2018-7185

The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.

  • Published: Mar 6, 2018
  • Updated: Apr 13, 2023
  • CVE: CVE-2018-7185
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
ntp / ntp 4.2.8-p5 4.2.8-p5.x
ntp / ntp 4.2.8-p2 4.2.8-p2.x
ntp / ntp 4.2.8-p3 4.2.8-p3.x
ntp / ntp 4.2.8-p9 4.2.8-p9.x
ntp / ntp 4.2.8-p4 4.2.8-p4.x
ntp / ntp 4.2.8-p7 4.2.8-p7.x
ntp / ntp 4.2.8-p8 4.2.8-p8.x
ntp / ntp 4.2.8-p6 4.2.8-p6.x
ntp / ntp 4.2.8-p1 4.2.8-p1.x
ntp / ntp 4.2.8-p10 4.2.8-p10.x
ntp / ntp 4.2.8-p3-rc3 4.2.8-p3-rc3.x
ntp / ntp 4.2.8-p3-rc2 4.2.8-p3-rc2.x
ntp / ntp 4.2.8-p3-rc1 4.2.8-p3-rc1.x
ntp / ntp 4.2.8-p2-rc3 4.2.8-p2-rc3.x
ntp / ntp 4.2.8-p2-rc2 4.2.8-p2-rc2.x
ntp / ntp 4.2.8-p2-rc1 4.2.8-p2-rc1.x
ntp / ntp 4.2.8-p1-rc2 4.2.8-p1-rc2.x
ntp / ntp 4.2.8-p1-rc1 4.2.8-p1-rc1.x
ntp / ntp 4.2.8-p1-beta5 4.2.8-p1-beta5.x
ntp / ntp 4.2.8-p1-beta4 4.2.8-p1-beta4.x
ntp / ntp 4.2.8-p1-beta3 4.2.8-p1-beta3.x
ntp / ntp 4.2.8-p1-beta2 4.2.8-p1-beta2.x
ntp / ntp 4.2.8-p1-beta1 4.2.8-p1-beta1.x
ntp / ntp 4.2.8 4.2.8.x
ntp / ntp 4.2.6 4.2.8
synology / diskstation_manager 5.2 6.1.6-15266
synology / router_manager 1.1 1.1.6-6931-3
synology / skynas - 6.1.5-15254
synology / virtual_diskstation_manager - 6.1.6-15266
synology / vs960hd_firmware - 2.2.3-1505
canonical / ubuntu_linux 16.04 16.04.x
canonical / ubuntu_linux 14.04 14.04.x
canonical / ubuntu_linux 12.04 12.04.x
canonical / ubuntu_linux 17.10 17.10.x
canonical / ubuntu_linux 18.04 18.04.x
hpe / hpux-ntp - c.4.2.8.4.0
oracle / fujitsu_m10-1_firmware - xcp2361
oracle / fujitsu_m10-4_firmware - xcp2361
oracle / fujitsu_m10-4s_firmware - xcp2361
oracle / fujitsu_m12-1_firmware - xcp2361
oracle / fujitsu_m12-2_firmware - xcp2361
oracle / fujitsu_m12-2s_firmware - xcp2361
oracle / fujitsu_m10-1_firmware - xcp3070
oracle / fujitsu_m10-4_firmware - xcp3070
oracle / fujitsu_m10-4s_firmware - xcp3070
oracle / fujitsu_m12-1_firmware - xcp3070
oracle / fujitsu_m12-2_firmware - xcp3070
oracle / fujitsu_m12-2s_firmware - xcp3070