What is CVE-2018-7170?

CVE-2018-7170 is a medium-severity vulnerability in Hpe Hpux-ntp. CVSS score: 5.3/10. Published 2018-03-06.

How severe is CVE-2018-7170?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Hpe Hpux-ntp

CVE-2018-7170

ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clo…

EPSS: 0.028 (84.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N.

Affected products

References

cve@mitre.org (VDB Entry, Third Party Advisory, x_refsource_MISC)
cve@mitre.org (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
cve@mitre.org (x_refsource_FREEBSD, vendor-advisory, Third Party Advisory)
cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ, VDB Entry, Third Party Advisory)
cve@mitre.org (Third Party Advisory, x_refsource_MISC, Issue Tracking)
cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)
cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)
cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)

Frequently asked questions

What is CVE-2018-7170?: CVE-2018-7170 is a medium-severity vulnerability in Hpe Hpux-ntp. CVSS score: 5.3/10. Published 2018-03-06.
How severe is CVE-2018-7170?: Medium severity. CVSS v3 base score is 5.3 out of 10.