praecis_parse in ntpd/refclock_palisade.c in NTP 4.2.8p15 has an out-of-bounds write. Any attack method would be complex, e.g., with a manipulated GPS receiver.
References
Configurations
History
07 Nov 2023, 04:09
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
14 Jun 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
24 Apr 2023, 13:58
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ntp:ntp:4.2.8:p15:*:*:*:*:*:* | |
CWE | CWE-787 | |
First Time |
Ntp ntp
Ntp |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.4 |
References | (MISC) https://github.com/spwpun/ntp-4.2.8p15-cves/blob/main/CVE-2023-26555 - Third Party Advisory | |
References | (MISC) https://github.com/spwpun/ntp-4.2.8p15-cves/issues/1#issuecomment-1506546409 - Issue Tracking |
13 Apr 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
Summary | praecis_parse in ntpd/refclock_palisade.c in NTP 4.2.8p15 has an out-of-bounds write. Any attack method would be complex, e.g., with a manipulated GPS receiver. | |
References |
|
11 Apr 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-11 21:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-26555
Mitre link : CVE-2023-26555
CVE.ORG link : CVE-2023-26555
JSON object : View
Products Affected
ntp
- ntp
CWE
CWE-787
Out-of-bounds Write