cvelistv5 - CVE-2016-7431

CVE-2016-7431

Vulnerability from cvelistv5

Published

2017-01-13 16:00

Modified

2024-08-06 01:57

Severity ?

Summary

NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.

References

URL	Tags
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html
cve@mitre.org	http://nwtime.org/ntp428p9_release/	Release Notes, Vendor Advisory
cve@mitre.org	http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html
cve@mitre.org	http://support.ntp.org/bin/view/Main/NtpBug3102	Issue Tracking, Mitigation, Vendor Advisory
cve@mitre.org	http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities	Vendor Advisory
cve@mitre.org	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en
cve@mitre.org	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
cve@mitre.org	http://www.securityfocus.com/archive/1/539955/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/540254/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/94454
cve@mitre.org	http://www.securitytracker.com/id/1037354
cve@mitre.org	http://www.ubuntu.com/usn/USN-3349-1
cve@mitre.org	https://bto.bluecoat.com/security-advisory/sa139
cve@mitre.org	https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
cve@mitre.org	https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us
cve@mitre.org	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us
cve@mitre.org	https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
cve@mitre.org	https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/
cve@mitre.org	https://www.kb.cert.org/vuls/id/633847	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html
af854a3a-2127-422b-91ae-364da2661108	http://nwtime.org/ntp428p9_release/	Release Notes, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html
af854a3a-2127-422b-91ae-364da2661108	http://support.ntp.org/bin/view/Main/NtpBug3102	Issue Tracking, Mitigation, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/539955/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/540254/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/94454
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1037354
af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/USN-3349-1
af854a3a-2127-422b-91ae-364da2661108	https://bto.bluecoat.com/security-advisory/sa139
af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
af854a3a-2127-422b-91ae-364da2661108	https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us
af854a3a-2127-422b-91ae-364da2661108	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us
af854a3a-2127-422b-91ae-364da2661108	https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
af854a3a-2127-422b-91ae-364da2661108	https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/633847	Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-06T01:57:47.665Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
               },
               {
                  name: "94454",
                  tags: [
                     "vdb-entry",
                     "x_refsource_BID",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/bid/94454",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://nwtime.org/ntp428p9_release/",
               },
               {
                  name: "VU#633847",
                  tags: [
                     "third-party-advisory",
                     "x_refsource_CERT-VN",
                     "x_transferred",
                  ],
                  url: "https://www.kb.cert.org/vuls/id/633847",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
               },
               {
                  name: "1037354",
                  tags: [
                     "vdb-entry",
                     "x_refsource_SECTRACK",
                     "x_transferred",
                  ],
                  url: "http://www.securitytracker.com/id/1037354",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://bto.bluecoat.com/security-advisory/sa139",
               },
               {
                  name: "FreeBSD-SA-16:39",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_FREEBSD",
                     "x_transferred",
                  ],
                  url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
               },
               {
                  name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
               },
               {
                  name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
               },
               {
                  name: "openSUSE-SU-2016:3280",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_SUSE",
                     "x_transferred",
                  ],
                  url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
               },
               {
                  name: "USN-3349-1",
                  tags: [
                     "vendor-advisory",
                     "x_refsource_UBUNTU",
                     "x_transferred",
                  ],
                  url: "http://www.ubuntu.com/usn/USN-3349-1",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
               },
               {
                  name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
               },
               {
                  name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                  tags: [
                     "mailing-list",
                     "x_refsource_BUGTRAQ",
                     "x_transferred",
                  ],
                  url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
               },
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
               },
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "n/a",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "n/a",
                  },
               ],
            },
         ],
         datePublic: "2016-11-21T00:00:00",
         descriptions: [
            {
               lang: "en",
               value: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "n/a",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2021-07-12T16:41:31",
            orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            shortName: "mitre",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
            },
            {
               name: "94454",
               tags: [
                  "vdb-entry",
                  "x_refsource_BID",
               ],
               url: "http://www.securityfocus.com/bid/94454",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://nwtime.org/ntp428p9_release/",
            },
            {
               name: "VU#633847",
               tags: [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
               ],
               url: "https://www.kb.cert.org/vuls/id/633847",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
            },
            {
               name: "1037354",
               tags: [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
               ],
               url: "http://www.securitytracker.com/id/1037354",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://bto.bluecoat.com/security-advisory/sa139",
            },
            {
               name: "FreeBSD-SA-16:39",
               tags: [
                  "vendor-advisory",
                  "x_refsource_FREEBSD",
               ],
               url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
            },
            {
               name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
            },
            {
               name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
            },
            {
               name: "openSUSE-SU-2016:3280",
               tags: [
                  "vendor-advisory",
                  "x_refsource_SUSE",
               ],
               url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
            },
            {
               name: "USN-3349-1",
               tags: [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
               ],
               url: "http://www.ubuntu.com/usn/USN-3349-1",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
            },
            {
               name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
            },
            {
               name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
               tags: [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
               ],
               url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
            },
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
            },
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2016-7431",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "n/a",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "n/a",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "n/a",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
                     refsource: "CONFIRM",
                     url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
                  },
                  {
                     name: "94454",
                     refsource: "BID",
                     url: "http://www.securityfocus.com/bid/94454",
                  },
                  {
                     name: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
                     refsource: "CONFIRM",
                     url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
                  },
                  {
                     name: "http://nwtime.org/ntp428p9_release/",
                     refsource: "CONFIRM",
                     url: "http://nwtime.org/ntp428p9_release/",
                  },
                  {
                     name: "VU#633847",
                     refsource: "CERT-VN",
                     url: "https://www.kb.cert.org/vuls/id/633847",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
                  },
                  {
                     name: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
                     refsource: "CONFIRM",
                     url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
                  },
                  {
                     name: "1037354",
                     refsource: "SECTRACK",
                     url: "http://www.securitytracker.com/id/1037354",
                  },
                  {
                     name: "https://bto.bluecoat.com/security-advisory/sa139",
                     refsource: "CONFIRM",
                     url: "https://bto.bluecoat.com/security-advisory/sa139",
                  },
                  {
                     name: "FreeBSD-SA-16:39",
                     refsource: "FREEBSD",
                     url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
                  },
                  {
                     name: "http://support.ntp.org/bin/view/Main/NtpBug3102",
                     refsource: "CONFIRM",
                     url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
                  },
                  {
                     name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
                  },
                  {
                     name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
                  },
                  {
                     name: "openSUSE-SU-2016:3280",
                     refsource: "SUSE",
                     url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
                  },
                  {
                     name: "USN-3349-1",
                     refsource: "UBUNTU",
                     url: "http://www.ubuntu.com/usn/USN-3349-1",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
                     refsource: "CONFIRM",
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
                  },
                  {
                     name: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
                     refsource: "CONFIRM",
                     url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
                  },
                  {
                     name: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
                     refsource: "CONFIRM",
                     url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
                  },
                  {
                     name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
                  },
                  {
                     name: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
                     refsource: "MISC",
                     url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
                  },
                  {
                     name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                     refsource: "BUGTRAQ",
                     url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
                  },
                  {
                     name: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
                     refsource: "CONFIRM",
                     url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
                  },
                  {
                     name: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
                     refsource: "MISC",
                     url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
      assignerShortName: "mitre",
      cveId: "CVE-2016-7431",
      datePublished: "2017-01-13T16:00:00",
      dateReserved: "2016-09-09T00:00:00",
      dateUpdated: "2024-08-06T01:57:47.665Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2016-7431\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-01-13T16:59:00.467\",\"lastModified\":\"2024-11-21T02:57:59.770\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.\"},{\"lang\":\"es\",\"value\":\"NTP en versiones anteriores a 4.2.8p9 permite a atacantes remotos eludir el mecanismo de protección de la marca de tiempo de origen a través de una marca de tiempo de origen de cero. NOTA: esta vulnerabilidad existe debido a una regresión de CVE-2015-8138.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ntp:ntp:4.2.8:p8:*:*:*:*:*:*\",\"matchCriteriaId\":\"F12E4CF5-536C-416B-AD8D-6AE7CBE22C71\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://nwtime.org/ntp428p9_release/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.ntp.org/bin/view/Main/NtpBug3102\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/539955/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/540254/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/94454\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id/1037354\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ubuntu.com/usn/USN-3349-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bto.bluecoat.com/security-advisory/sa139\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.kb.cert.org/vuls/id/633847\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://nwtime.org/ntp428p9_release/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.ntp.org/bin/view/Main/NtpBug3102\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/539955/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/540254/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/94454\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1037354\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-3349-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bto.bluecoat.com/security-advisory/sa139\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.kb.cert.org/vuls/id/633847\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]}]}}",
   },
}

ghsa-27gj-3475-hjqq

Vulnerability from github

Published

2022-05-13 01:08

Modified

2022-05-13 01:08

Severity ?

5.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Details

NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2016-7431",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-20",
      ],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2017-01-13T16:59:00Z",
      severity: "MODERATE",
   },
   details: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
   id: "GHSA-27gj-3475-hjqq",
   modified: "2022-05-13T01:08:51Z",
   published: "2022-05-13T01:08:51Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2016-7431",
      },
      {
         type: "WEB",
         url: "https://bto.bluecoat.com/security-advisory/sa139",
      },
      {
         type: "WEB",
         url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
      },
      {
         type: "WEB",
         url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
      },
      {
         type: "WEB",
         url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
      },
      {
         type: "WEB",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
      },
      {
         type: "WEB",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
      },
      {
         type: "WEB",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
      },
      {
         type: "WEB",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
      },
      {
         type: "WEB",
         url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
      },
      {
         type: "WEB",
         url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223",
      },
      {
         type: "WEB",
         url: "https://www.kb.cert.org/vuls/id/633847",
      },
      {
         type: "WEB",
         url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
      },
      {
         type: "WEB",
         url: "http://nwtime.org/ntp428p9_release",
      },
      {
         type: "WEB",
         url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
      },
      {
         type: "WEB",
         url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
      },
      {
         type: "WEB",
         url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
      },
      {
         type: "WEB",
         url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
      },
      {
         type: "WEB",
         url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
      },
      {
         type: "WEB",
         url: "http://www.securityfocus.com/bid/94454",
      },
      {
         type: "WEB",
         url: "http://www.securitytracker.com/id/1037354",
      },
      {
         type: "WEB",
         url: "http://www.ubuntu.com/usn/USN-3349-1",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
         type: "CVSS_V3",
      },
   ],
}

fkie_cve-2016-7431

Vulnerability from fkie_nvd

Published

2017-01-13 16:59

Modified

2024-11-21 02:57

Severity ?

5.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Summary

NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.

References

URL	Tags
cve@mitre.org	http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html
cve@mitre.org	http://nwtime.org/ntp428p9_release/	Release Notes, Vendor Advisory
cve@mitre.org	http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html
cve@mitre.org	http://support.ntp.org/bin/view/Main/NtpBug3102	Issue Tracking, Mitigation, Vendor Advisory
cve@mitre.org	http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities	Vendor Advisory
cve@mitre.org	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en
cve@mitre.org	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
cve@mitre.org	http://www.securityfocus.com/archive/1/539955/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/540254/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/94454
cve@mitre.org	http://www.securitytracker.com/id/1037354
cve@mitre.org	http://www.ubuntu.com/usn/USN-3349-1
cve@mitre.org	https://bto.bluecoat.com/security-advisory/sa139
cve@mitre.org	https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
cve@mitre.org	https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us
cve@mitre.org	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us
cve@mitre.org	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us
cve@mitre.org	https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
cve@mitre.org	https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/
cve@mitre.org	https://www.kb.cert.org/vuls/id/633847	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html
af854a3a-2127-422b-91ae-364da2661108	http://nwtime.org/ntp428p9_release/	Release Notes, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html
af854a3a-2127-422b-91ae-364da2661108	http://support.ntp.org/bin/view/Main/NtpBug3102	Issue Tracking, Mitigation, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/539955/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/540254/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/94454
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1037354
af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/USN-3349-1
af854a3a-2127-422b-91ae-364da2661108	https://bto.bluecoat.com/security-advisory/sa139
af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
af854a3a-2127-422b-91ae-364da2661108	https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us
af854a3a-2127-422b-91ae-364da2661108	https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us
af854a3a-2127-422b-91ae-364da2661108	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us
af854a3a-2127-422b-91ae-364da2661108	https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
af854a3a-2127-422b-91ae-364da2661108	https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/633847	Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	ntp	ntp	4.2.8

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:a:ntp:ntp:4.2.8:p8:*:*:*:*:*:*",
                     matchCriteriaId: "F12E4CF5-536C-416B-AD8D-6AE7CBE22C71",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
      },
      {
         lang: "es",
         value: "NTP en versiones anteriores a 4.2.8p9 permite a atacantes remotos eludir el mecanismo de protección de la marca de tiempo de origen a través de una marca de tiempo de origen de cero. NOTA: esta vulnerabilidad existe debido a una regresión de CVE-2015-8138.",
      },
   ],
   id: "CVE-2016-7431",
   lastModified: "2024-11-21T02:57:59.770",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 5,
               confidentialityImpact: "NONE",
               integrityImpact: "PARTIAL",
               vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 5.3,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "LOW",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
               version: "3.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 1.4,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2017-01-13T16:59:00.467",
   references: [
      {
         source: "cve@mitre.org",
         url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Release Notes",
            "Vendor Advisory",
         ],
         url: "http://nwtime.org/ntp428p9_release/",
      },
      {
         source: "cve@mitre.org",
         url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Issue Tracking",
            "Mitigation",
            "Vendor Advisory",
         ],
         url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securityfocus.com/bid/94454",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.securitytracker.com/id/1037354",
      },
      {
         source: "cve@mitre.org",
         url: "http://www.ubuntu.com/usn/USN-3349-1",
      },
      {
         source: "cve@mitre.org",
         url: "https://bto.bluecoat.com/security-advisory/sa139",
      },
      {
         source: "cve@mitre.org",
         url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
      },
      {
         source: "cve@mitre.org",
         url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
      },
      {
         source: "cve@mitre.org",
         url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
      },
      {
         source: "cve@mitre.org",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
      },
      {
         source: "cve@mitre.org",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
      },
      {
         source: "cve@mitre.org",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
      },
      {
         source: "cve@mitre.org",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
      },
      {
         source: "cve@mitre.org",
         url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
      },
      {
         source: "cve@mitre.org",
         url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
      },
      {
         source: "cve@mitre.org",
         tags: [
            "Third Party Advisory",
            "US Government Resource",
         ],
         url: "https://www.kb.cert.org/vuls/id/633847",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Release Notes",
            "Vendor Advisory",
         ],
         url: "http://nwtime.org/ntp428p9_release/",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Issue Tracking",
            "Mitigation",
            "Vendor Advisory",
         ],
         url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securityfocus.com/bid/94454",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.securitytracker.com/id/1037354",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.ubuntu.com/usn/USN-3349-1",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://bto.bluecoat.com/security-advisory/sa139",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Third Party Advisory",
            "US Government Resource",
         ],
         url: "https://www.kb.cert.org/vuls/id/633847",
      },
   ],
   sourceIdentifier: "cve@mitre.org",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

ICSA-21-159-11

Vulnerability from csaf_cisa

Published

2021-06-08 00:00

Modified

2021-06-08 00:00

Summary

Siemens SIMATIC NET CP 443-1 OPC UA

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Risk evaluation

Successful exploitation of these vulnerabilities could create a denial-of-service condition as well as other specified and unspecified impacts.

Critical infrastructure sectors

Multiple Sectors

Countries/areas deployed

Worldwide

Company headquarters location

Germany

Recommended Practices

CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:

Recommended Practices

CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures. CISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies. Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Exploitability

No known public exploits specifically target these vulnerabilities.

JSON

To clipboard

{
   document: {
      acknowledgments: [
         {
            organization: "Siemens",
            summary: "reporting these vulnerabilities to CISA",
         },
      ],
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Disclosure is not limited",
         tlp: {
            label: "WHITE",
            url: "https://us-cert.cisa.gov/tlp/",
         },
      },
      lang: "en-US",
      notes: [
         {
            category: "general",
            text: "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
            title: "CISA Disclaimer",
         },
         {
            category: "legal_disclaimer",
            text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
            title: "Legal Notice",
         },
         {
            category: "summary",
            text: "Successful exploitation of these vulnerabilities could create a denial-of-service condition as well as other specified and unspecified impacts.",
            title: "Risk evaluation",
         },
         {
            category: "other",
            text: "Multiple Sectors",
            title: "Critical infrastructure sectors",
         },
         {
            category: "other",
            text: "Worldwide",
            title: "Countries/areas deployed",
         },
         {
            category: "other",
            text: "Germany",
            title: "Company headquarters location",
         },
         {
            category: "general",
            text: "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
            title: "Additional Resources",
         },
         {
            category: "other",
            text: "No known public exploits specifically target these vulnerabilities.",
            title: "Exploitability",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
         name: "CISA",
         namespace: "https://www.cisa.gov/",
      },
      references: [
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - CSAF Version",
            url: "https://cert-portal.siemens.com/productcert/csaf/ssa-211752.json",
         },
         {
            category: "self",
            summary: "ICS Advisory ICSA-21-159-11 JSON",
            url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-159-11.json",
         },
         {
            category: "self",
            summary: "ICS Advisory ICSA-21-159-11 Web Version",
            url: "https://www.cisa.gov/news-events/ics-advisories/icsa-21-159-11",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-10-301-01",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B",
         },
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - PDF Version",
            url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
         },
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - TXT Version",
            url: "https://cert-portal.siemens.com/productcert/txt/ssa-211752.txt",
         },
      ],
      title: "Siemens SIMATIC NET CP 443-1 OPC UA",
      tracking: {
         current_release_date: "2021-06-08T00:00:00.000000Z",
         generator: {
            engine: {
               name: "CISA CSAF Generator",
               version: "1.0.0",
            },
         },
         id: "ICSA-21-159-11",
         initial_release_date: "2021-06-08T00:00:00.000000Z",
         revision_history: [
            {
               date: "2021-06-08T00:00:00.000000Z",
               legacy_version: "Initial",
               number: "1",
               summary: "ICSA-21-159-11 Siemens SIMATIC NET CP 443-1 OPC UA",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "vers:all/*",
                        product: {
                           name: "SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)",
                           product_id: "CSAFPID-0001",
                           product_identification_helper: {
                              model_numbers: [
                                 "6GK7443-1UX00-0XE0",
                              ],
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "SIMATIC CP 443-1 OPC UA",
               },
            ],
            category: "vendor",
            name: "Siemens",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2015-7705",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-7705 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-7705.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7705",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-7705",
      },
      {
         cve: "CVE-2015-7853",
         cwe: {
            id: "CWE-120",
            name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
         },
         notes: [
            {
               category: "summary",
               text: "The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-7853 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-7853.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7853",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-7853",
      },
      {
         cve: "CVE-2015-8138",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-8138 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-8138.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8138",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-8138",
      },
      {
         cve: "CVE-2016-1547",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1547 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1547.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1547",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1547",
      },
      {
         cve: "CVE-2016-1548",
         cwe: {
            id: "CWE-285",
            name: "Improper Authorization",
         },
         notes: [
            {
               category: "summary",
               text: "An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1548 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1548.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1548",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.2,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1548",
      },
      {
         cve: "CVE-2016-1550",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "summary",
               text: "An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1550 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1550.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1550",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1550",
      },
      {
         cve: "CVE-2016-2518",
         cwe: {
            id: "CWE-125",
            name: "Out-of-bounds Read",
         },
         notes: [
            {
               category: "summary",
               text: "The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-2518 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-2518.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2518",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-2518",
      },
      {
         cve: "CVE-2016-4953",
         cwe: {
            id: "CWE-287",
            name: "Improper Authentication",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4953 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4953.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4953",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4953",
      },
      {
         cve: "CVE-2016-4954",
         cwe: {
            id: "CWE-362",
            name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
         },
         notes: [
            {
               category: "summary",
               text: "The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4954 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4954.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4954",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4954",
      },
      {
         cve: "CVE-2016-4955",
         cwe: {
            id: "CWE-362",
            name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4955 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4955.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4955",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4955",
      },
      {
         cve: "CVE-2016-4956",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4956 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4956.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4956",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4956",
      },
      {
         cve: "CVE-2016-7431",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-7431 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-7431.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7431",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-7431",
      },
      {
         cve: "CVE-2016-7433",
         cwe: {
            id: "CWE-682",
            name: "Incorrect Calculation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a \"root distance that did not include the peer dispersion.\"",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-7433 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-7433.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7433",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-7433",
      },
      {
         cve: "CVE-2016-9042",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-9042 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-9042.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9042",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-9042",
      },
      {
         cve: "CVE-2017-6458",
         cwe: {
            id: "CWE-119",
            name: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
         },
         notes: [
            {
               category: "summary",
               text: "Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2017-6458 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2017-6458.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6548",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2017-6458",
      },
   ],
}

icsa-21-159-11

Vulnerability from csaf_cisa

Published

2021-06-08 00:00

Modified

2021-06-08 00:00

Summary

Siemens SIMATIC NET CP 443-1 OPC UA

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Legal Notice

Risk evaluation

Successful exploitation of these vulnerabilities could create a denial-of-service condition as well as other specified and unspecified impacts.

Critical infrastructure sectors

Multiple Sectors

Countries/areas deployed

Worldwide

Company headquarters location

Germany

Recommended Practices

CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:

Recommended Practices

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Exploitability

No known public exploits specifically target these vulnerabilities.

JSON

To clipboard

{
   document: {
      acknowledgments: [
         {
            organization: "Siemens",
            summary: "reporting these vulnerabilities to CISA",
         },
      ],
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Disclosure is not limited",
         tlp: {
            label: "WHITE",
            url: "https://us-cert.cisa.gov/tlp/",
         },
      },
      lang: "en-US",
      notes: [
         {
            category: "general",
            text: "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
            title: "CISA Disclaimer",
         },
         {
            category: "legal_disclaimer",
            text: "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
            title: "Legal Notice",
         },
         {
            category: "summary",
            text: "Successful exploitation of these vulnerabilities could create a denial-of-service condition as well as other specified and unspecified impacts.",
            title: "Risk evaluation",
         },
         {
            category: "other",
            text: "Multiple Sectors",
            title: "Critical infrastructure sectors",
         },
         {
            category: "other",
            text: "Worldwide",
            title: "Countries/areas deployed",
         },
         {
            category: "other",
            text: "Germany",
            title: "Company headquarters location",
         },
         {
            category: "general",
            text: "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Specifically, users should:",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
            title: "Recommended Practices",
         },
         {
            category: "general",
            text: "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
            title: "Additional Resources",
         },
         {
            category: "other",
            text: "No known public exploits specifically target these vulnerabilities.",
            title: "Exploitability",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
         name: "CISA",
         namespace: "https://www.cisa.gov/",
      },
      references: [
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - CSAF Version",
            url: "https://cert-portal.siemens.com/productcert/csaf/ssa-211752.json",
         },
         {
            category: "self",
            summary: "ICS Advisory ICSA-21-159-11 JSON",
            url: "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-159-11.json",
         },
         {
            category: "self",
            summary: "ICS Advisory ICSA-21-159-11 Web Version",
            url: "https://www.cisa.gov/news-events/ics-advisories/icsa-21-159-11",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/ics/alerts/ICS-ALERT-10-301-01",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf",
         },
         {
            category: "external",
            summary: "Recommended Practices",
            url: "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B",
         },
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - PDF Version",
            url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
         },
         {
            category: "external",
            summary: "SSA-211752: Multiple NTP-Client Related Vulnerabilities in SIMATIC CP 443-1 OPC UA - TXT Version",
            url: "https://cert-portal.siemens.com/productcert/txt/ssa-211752.txt",
         },
      ],
      title: "Siemens SIMATIC NET CP 443-1 OPC UA",
      tracking: {
         current_release_date: "2021-06-08T00:00:00.000000Z",
         generator: {
            engine: {
               name: "CISA CSAF Generator",
               version: "1.0.0",
            },
         },
         id: "ICSA-21-159-11",
         initial_release_date: "2021-06-08T00:00:00.000000Z",
         revision_history: [
            {
               date: "2021-06-08T00:00:00.000000Z",
               legacy_version: "Initial",
               number: "1",
               summary: "ICSA-21-159-11 Siemens SIMATIC NET CP 443-1 OPC UA",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "vers:all/*",
                        product: {
                           name: "SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)",
                           product_id: "CSAFPID-0001",
                           product_identification_helper: {
                              model_numbers: [
                                 "6GK7443-1UX00-0XE0",
                              ],
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "SIMATIC CP 443-1 OPC UA",
               },
            ],
            category: "vendor",
            name: "Siemens",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2015-7705",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-7705 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-7705.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7705",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-7705",
      },
      {
         cve: "CVE-2015-7853",
         cwe: {
            id: "CWE-120",
            name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
         },
         notes: [
            {
               category: "summary",
               text: "The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-7853 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-7853.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7853",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-7853",
      },
      {
         cve: "CVE-2015-8138",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2015-8138 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2015-8138.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8138",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2015-8138",
      },
      {
         cve: "CVE-2016-1547",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1547 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1547.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1547",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1547",
      },
      {
         cve: "CVE-2016-1548",
         cwe: {
            id: "CWE-285",
            name: "Improper Authorization",
         },
         notes: [
            {
               category: "summary",
               text: "An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1548 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1548.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1548",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.2,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1548",
      },
      {
         cve: "CVE-2016-1550",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "summary",
               text: "An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-1550 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-1550.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1550",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-1550",
      },
      {
         cve: "CVE-2016-2518",
         cwe: {
            id: "CWE-125",
            name: "Out-of-bounds Read",
         },
         notes: [
            {
               category: "summary",
               text: "The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-2518 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-2518.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2518",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-2518",
      },
      {
         cve: "CVE-2016-4953",
         cwe: {
            id: "CWE-287",
            name: "Improper Authentication",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4953 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4953.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4953",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4953",
      },
      {
         cve: "CVE-2016-4954",
         cwe: {
            id: "CWE-362",
            name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
         },
         notes: [
            {
               category: "summary",
               text: "The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4954 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4954.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4954",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4954",
      },
      {
         cve: "CVE-2016-4955",
         cwe: {
            id: "CWE-362",
            name: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4955 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4955.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4955",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4955",
      },
      {
         cve: "CVE-2016-4956",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-4956 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-4956.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4956",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-4956",
      },
      {
         cve: "CVE-2016-7431",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-7431 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-7431.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7431",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-7431",
      },
      {
         cve: "CVE-2016-7433",
         cwe: {
            id: "CWE-682",
            name: "Incorrect Calculation",
         },
         notes: [
            {
               category: "summary",
               text: "NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a \"root distance that did not include the peer dispersion.\"",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-7433 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-7433.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7433",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-7433",
      },
      {
         cve: "CVE-2016-9042",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "summary",
               text: "An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2016-9042 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2016-9042.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9042",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2016-9042",
      },
      {
         cve: "CVE-2017-6458",
         cwe: {
            id: "CWE-119",
            name: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
         },
         notes: [
            {
               category: "summary",
               text: "Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.",
               title: "Summary",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0001",
            ],
         },
         references: [
            {
               summary: "CVE-2017-6458 Mitre 5.0 json",
               url: "https://cert-portal.siemens.com/productcert/mitre/CVE-2017-6458.json",
            },
            {
               category: "external",
               summary: "web.nvd.nist.gov",
               url: "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6548",
            },
            {
               category: "external",
               summary: "www.first.org",
               url: "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            },
         ],
         remediations: [
            {
               category: "no_fix_planned",
               details: "Currently no remediation is planned",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Deactivate NTP-based time synchronization of the device, if enabled. The feature is disabled by default",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "Configure an additional firewall to prevent communication to port udp/123 of an affected device",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
            {
               category: "mitigation",
               details: "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
               product_ids: [
                  "CSAFPID-0001",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0001",
               ],
            },
         ],
         title: "CVE-2017-6458",
      },
   ],
}

gsd-2016-7431

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.

Aliases

CVE-2016-7431

Aliases

CVE-2016-7431

JSON

To clipboard

{
   GSD: {
      alias: "CVE-2016-7431",
      description: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
      id: "GSD-2016-7431",
      references: [
         "https://www.suse.com/security/cve/CVE-2016-7431.html",
         "https://ubuntu.com/security/CVE-2016-7431",
         "https://security.archlinux.org/CVE-2016-7431",
      ],
   },
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2016-7431",
         ],
         details: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
         id: "GSD-2016-7431",
         modified: "2023-12-13T01:21:21.085652Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "cve@mitre.org",
            ID: "CVE-2016-7431",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "n/a",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "n/a",
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "n/a",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        lang: "eng",
                        value: "n/a",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
                  refsource: "CONFIRM",
                  url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
               },
               {
                  name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
                  refsource: "CONFIRM",
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
               },
               {
                  name: "94454",
                  refsource: "BID",
                  url: "http://www.securityfocus.com/bid/94454",
               },
               {
                  name: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
                  refsource: "CONFIRM",
                  url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
               },
               {
                  name: "http://nwtime.org/ntp428p9_release/",
                  refsource: "CONFIRM",
                  url: "http://nwtime.org/ntp428p9_release/",
               },
               {
                  name: "VU#633847",
                  refsource: "CERT-VN",
                  url: "https://www.kb.cert.org/vuls/id/633847",
               },
               {
                  name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
                  refsource: "CONFIRM",
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
               },
               {
                  name: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
                  refsource: "CONFIRM",
                  url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
               },
               {
                  name: "1037354",
                  refsource: "SECTRACK",
                  url: "http://www.securitytracker.com/id/1037354",
               },
               {
                  name: "https://bto.bluecoat.com/security-advisory/sa139",
                  refsource: "CONFIRM",
                  url: "https://bto.bluecoat.com/security-advisory/sa139",
               },
               {
                  name: "FreeBSD-SA-16:39",
                  refsource: "FREEBSD",
                  url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
               },
               {
                  name: "http://support.ntp.org/bin/view/Main/NtpBug3102",
                  refsource: "CONFIRM",
                  url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
               },
               {
                  name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
               },
               {
                  name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
               },
               {
                  name: "openSUSE-SU-2016:3280",
                  refsource: "SUSE",
                  url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
               },
               {
                  name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
                  refsource: "CONFIRM",
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
               },
               {
                  name: "USN-3349-1",
                  refsource: "UBUNTU",
                  url: "http://www.ubuntu.com/usn/USN-3349-1",
               },
               {
                  name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
                  refsource: "CONFIRM",
                  url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
               },
               {
                  name: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
                  refsource: "CONFIRM",
                  url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
               },
               {
                  name: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
                  refsource: "CONFIRM",
                  url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
               },
               {
                  name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
               },
               {
                  name: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
                  refsource: "MISC",
                  url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
               },
               {
                  name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                  refsource: "BUGTRAQ",
                  url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
               },
               {
                  name: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
                  refsource: "CONFIRM",
                  url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
               },
               {
                  name: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
                  refsource: "MISC",
                  url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
               },
            ],
         },
      },
      "nvd.nist.gov": {
         configurations: {
            CVE_data_version: "4.0",
            nodes: [
               {
                  children: [],
                  cpe_match: [
                     {
                        cpe23Uri: "cpe:2.3:a:ntp:ntp:4.2.8:p8:*:*:*:*:*:*",
                        cpe_name: [],
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
         cve: {
            CVE_data_meta: {
               ASSIGNER: "cve@mitre.org",
               ID: "CVE-2016-7431",
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "en",
                     value: "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero.  NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "en",
                           value: "CWE-20",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "VU#633847",
                     refsource: "CERT-VN",
                     tags: [
                        "Third Party Advisory",
                        "US Government Resource",
                     ],
                     url: "https://www.kb.cert.org/vuls/id/633847",
                  },
                  {
                     name: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
                     refsource: "CONFIRM",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities",
                  },
                  {
                     name: "http://support.ntp.org/bin/view/Main/NtpBug3102",
                     refsource: "CONFIRM",
                     tags: [
                        "Issue Tracking",
                        "Mitigation",
                        "Vendor Advisory",
                     ],
                     url: "http://support.ntp.org/bin/view/Main/NtpBug3102",
                  },
                  {
                     name: "http://nwtime.org/ntp428p9_release/",
                     refsource: "CONFIRM",
                     tags: [
                        "Release Notes",
                        "Vendor Advisory",
                     ],
                     url: "http://nwtime.org/ntp428p9_release/",
                  },
                  {
                     name: "94454",
                     refsource: "BID",
                     tags: [],
                     url: "http://www.securityfocus.com/bid/94454",
                  },
                  {
                     name: "https://bto.bluecoat.com/security-advisory/sa139",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://bto.bluecoat.com/security-advisory/sa139",
                  },
                  {
                     name: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us",
                  },
                  {
                     name: "1037354",
                     refsource: "SECTRACK",
                     tags: [],
                     url: "http://www.securitytracker.com/id/1037354",
                  },
                  {
                     name: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
                  },
                  {
                     name: "FreeBSD-SA-16:39",
                     refsource: "FREEBSD",
                     tags: [],
                     url: "https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_us",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_us",
                  },
                  {
                     name: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf",
                  },
                  {
                     name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/archive/1/540254/100/0/threaded",
                  },
                  {
                     name: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-ntpd-en",
                  },
                  {
                     name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/archive/1/539955/100/0/threaded",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03899en_us",
                  },
                  {
                     name: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
                     refsource: "MISC",
                     tags: [],
                     url: "http://packetstormsecurity.com/files/140240/FreeBSD-Security-Advisory-FreeBSD-SA-16.39.ntp.html",
                  },
                  {
                     name: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-223/",
                  },
                  {
                     name: "20170310 [security bulletin] HPESBUX03706 rev.1 - HP-UX NTP service running ntpd, Multiple Vulnerabilities",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/540254/100/0/threaded",
                  },
                  {
                     name: "openSUSE-SU-2016:3280",
                     refsource: "SUSE",
                     tags: [],
                     url: "http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.html",
                  },
                  {
                     name: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
                     refsource: "CONFIRM",
                     tags: [],
                     url: "https://support.hpe.com/hpsc/doc/public/display?docLocale=en&docId=emr_na-hpesbhf03883en_us",
                  },
                  {
                     name: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
                     refsource: "MISC",
                     tags: [],
                     url: "https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11",
                  },
                  {
                     name: "USN-3349-1",
                     refsource: "UBUNTU",
                     tags: [],
                     url: "http://www.ubuntu.com/usn/USN-3349-1",
                  },
                  {
                     name: "20161222 FreeBSD Security Advisory FreeBSD-SA-16:39.ntp",
                     refsource: "BUGTRAQ",
                     tags: [],
                     url: "http://www.securityfocus.com/archive/1/539955/100/0/threaded",
                  },
               ],
            },
         },
         impact: {
            baseMetricV2: {
               cvssV2: {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  availabilityImpact: "NONE",
                  baseScore: 5,
                  confidentialityImpact: "NONE",
                  integrityImpact: "PARTIAL",
                  vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                  version: "2.0",
               },
               exploitabilityScore: 10,
               impactScore: 2.9,
               obtainAllPrivilege: false,
               obtainOtherPrivilege: false,
               obtainUserPrivilege: false,
               severity: "MEDIUM",
               userInteractionRequired: false,
            },
            baseMetricV3: {
               cvssV3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "LOW",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.0",
               },
               exploitabilityScore: 3.9,
               impactScore: 1.4,
            },
         },
         lastModifiedDate: "2021-07-12T17:15Z",
         publishedDate: "2017-01-13T16:59Z",
      },
   },
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2016-7431

Vulnerability from cvelistv5

ghsa-27gj-3475-hjqq

Vulnerability from github

fkie_cve-2016-7431

Vulnerability from fkie_nvd

ICSA-21-159-11

Vulnerability from csaf_cisa

icsa-21-159-11

Vulnerability from csaf_cisa

gsd-2016-7431

Vulnerability from gsd

Tags

Sightings

Nomenclature