Lucene search
F5F5:K82570157HistoryMar 19, 2018 - 12:00 a.m.
K82570157 : NTP vulnerability CVE-2018-7170
2018-03-1900:00:00
my.f5.com
25
Security Advisory Description
ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim’s clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549. (CVE-2018-7170)
Impact
An attacker can make adjustments to the system time of the F5 product, disrupting time-sensitive functionality of the F5 product. Only F5 products configured to use symmetric key authentication when synchronizing time with an NTP server are vulnerable.
Related
cvelist
cvelist
CVE-2018-7170
2018-03-06 20:00:00
CVE-2016-1549
2017-01-06 21:00:00
nvd
nvd
CVE-2018-7170
2018-03-06 20:29:01
CVE-2016-1549
2017-01-06 21:59:00
cve
cve
CVE-2018-7170
2018-03-06 20:29:01
CVE-2016-1549
2017-01-06 21:59:00
nessus
nessus
F5 Networks BIG-IP : NTP vulnerability (K82570157)
2023-11-03 00:00:00
Amazon Linux AMI : ntp (ALAS-2018-1083)
2018-09-20 00:00:00
Slackware 14.0 / 14.1 / 14.2 / current : ntp (SSA:2018-060-02)
2018-03-02 00:00:00
debiancve
debiancve
CVE-2018-7170
2018-03-06 20:29:01
CVE-2016-1549
2017-01-06 21:59:00
ubuntucve
ubuntucve
CVE-2018-7170
2018-03-06 00:00:00
CVE-2016-1549
2017-01-06 00:00:00
prion
prion
Code injection
2018-03-06 20:29:00
Code injection
2017-01-06 21:59:00
amazon
amazon
redhatcve
redhatcve
CVE-2018-7170
2018-02-28 19:49:37
openvas
openvas
Slackware: Security Advisory (SSA:2018-060-02)
2022-04-21 00:00:00
NTP.org 'ntpd' Authenticated Symmetric Passive Peering Remote Vulnerability
2018-03-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0956-1)
2021-04-19 00:00:00
slackware
slackware
[slackware-security] ntp
2018-03-01 23:49:07
[slackware-security] ntp
2018-08-17 17:43:28
[slackware-security] ntp
2016-04-29 21:57:25
f5
f5
K65271605 : NTP vulnerability CVE-2016-1549
2016-06-13 00:00:00
SOL65271605 - NTP vulnerability CVE-2016-1549
2016-06-13 00:00:00
seebug
seebug
talos
talos
Network Time Protocol Ephemeral Association Time Spoofing Vulnerability
2016-04-26 00:00:00
mageia
mageia
Updated ntp packages fix security vulnerabilities
2018-04-07 01:54:47
fedora
fedora
[SECURITY] Fedora 26 Update: ntp-4.2.8p11-1.fc26
2018-03-27 19:30:28
[SECURITY] Fedora 27 Update: ntp-4.2.8p11-1.fc27
2018-03-27 20:16:30
[SECURITY] Fedora 27 Update: ntp-4.2.8p12-1.fc27
2018-09-26 20:17:54
freebsd
freebsd
ntp -- multiple vulnerabilities
2018-02-27 00:00:00
ntp -- multiple vulnerabilities
2016-04-26 00:00:00
archlinux
archlinux
[ASA-201803-11] ntp: multiple issues
2018-03-16 00:00:00
aix
aix
There are vulnerabilities in NTPv4 that affect AIX.
2018-12-14 12:20:13
Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS
2018-08-14 14:48:57
suse
suse
Security update for ntp (moderate)
2018-10-25 18:10:27
Security update for ntp (moderate)
2018-10-25 18:21:54
Security update for ntp (important)
2016-05-18 14:10:13
ibm
ibm
Security Bulletin: Vulnerabilities in NTP affect AIX
2018-08-14 21:30:02
gentoo
gentoo
NTP: Multiple vulnerabilities
2018-05-26 00:00:00
NTP: Multiple vulnerabilities
2016-07-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:02.ntp
2018-03-07 00:00:00
FreeBSD-SA-16:16.ntp
2016-04-29 00:00:00
symantec
symantec
SA165: NTP Vulnerabilities February 2018
2018-04-26 08:00:00
cisco
cisco
arista
arista
Security Advisory 0019
2018-04-25 00:00:00
fortinet
fortinet
ntp-4.2.8p7 Security Vulnerability Announcement April 2016
2017-04-03 00:00:00
cert
cert
NTP.org ntpd contains multiple vulnerabilities
2016-04-27 00:00:00