CVE-2026-26076
- EPSS 0.05%
- Veröffentlicht 12.02.2026 21:48:44
- Zuletzt bearbeitet 23.02.2026 15:51:55
ntpd-rs is a full-featured implementation of the Network Time Protocol. Prior to 1.7.1, an attacker can remotely induce moderate increases (2-4 times above normal) in cpu usage. When having NTS enabled on an ntpd-rs server, an attacker can create mal...
CVE-2024-38528
- EPSS 0.22%
- Veröffentlicht 28.06.2024 20:15:02
- Zuletzt bearbeitet 21.11.2024 09:26:12
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. There is a missing limit for accepted NTS-KE connections. This allows an unauthenticated remote attacker to crash ntpd-rs when an NTS-KE server is conf...
CVE-2023-33192
- EPSS 0.25%
- Veröffentlicht 27.05.2023 04:15:25
- Zuletzt bearbeitet 21.11.2024 08:05:05
ntpd-rs is an NTP implementation written in Rust. ntpd-rs does not validate the length of NTS cookies in received NTP packets to the server. An attacker can crash the server by sending a specially crafted NTP packet containing a cookie shorter than w...