// For flags

CVE-2015-7976

 

Severity Score

4.3
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.

El comando savconfig ntpq en NTP 4.1.2, 4.2.x en versiones anteriores a 4.2.8p6, 4.3, 4.3.25, 4.3.70 y 4.3.77 no filtra adecuadamente caracteres especiales, lo que permite a atacantes causar un impacto no especificado a través de un nombre de archivo manipulado.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
Single
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2015-10-23 CVE Reserved
  • 2016-01-27 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-254: 7PK - Security Features
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.1.2
Search vendor "Ntp" for product "Ntp" and version "4.1.2"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
<= 4.2.8
Search vendor "Ntp" for product "Ntp" and version " <= 4.2.8"
p5
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.0
Search vendor "Ntp" for product "Ntp" and version "4.3.0"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.1
Search vendor "Ntp" for product "Ntp" and version "4.3.1"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.2
Search vendor "Ntp" for product "Ntp" and version "4.3.2"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.3
Search vendor "Ntp" for product "Ntp" and version "4.3.3"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.4
Search vendor "Ntp" for product "Ntp" and version "4.3.4"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.5
Search vendor "Ntp" for product "Ntp" and version "4.3.5"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.6
Search vendor "Ntp" for product "Ntp" and version "4.3.6"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.7
Search vendor "Ntp" for product "Ntp" and version "4.3.7"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.8
Search vendor "Ntp" for product "Ntp" and version "4.3.8"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.9
Search vendor "Ntp" for product "Ntp" and version "4.3.9"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.10
Search vendor "Ntp" for product "Ntp" and version "4.3.10"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.11
Search vendor "Ntp" for product "Ntp" and version "4.3.11"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.12
Search vendor "Ntp" for product "Ntp" and version "4.3.12"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.13
Search vendor "Ntp" for product "Ntp" and version "4.3.13"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.14
Search vendor "Ntp" for product "Ntp" and version "4.3.14"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.15
Search vendor "Ntp" for product "Ntp" and version "4.3.15"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.16
Search vendor "Ntp" for product "Ntp" and version "4.3.16"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.17
Search vendor "Ntp" for product "Ntp" and version "4.3.17"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.18
Search vendor "Ntp" for product "Ntp" and version "4.3.18"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.19
Search vendor "Ntp" for product "Ntp" and version "4.3.19"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.20
Search vendor "Ntp" for product "Ntp" and version "4.3.20"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.21
Search vendor "Ntp" for product "Ntp" and version "4.3.21"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.22
Search vendor "Ntp" for product "Ntp" and version "4.3.22"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.23
Search vendor "Ntp" for product "Ntp" and version "4.3.23"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.24
Search vendor "Ntp" for product "Ntp" and version "4.3.24"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.25
Search vendor "Ntp" for product "Ntp" and version "4.3.25"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.26
Search vendor "Ntp" for product "Ntp" and version "4.3.26"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.27
Search vendor "Ntp" for product "Ntp" and version "4.3.27"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.28
Search vendor "Ntp" for product "Ntp" and version "4.3.28"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.29
Search vendor "Ntp" for product "Ntp" and version "4.3.29"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.30
Search vendor "Ntp" for product "Ntp" and version "4.3.30"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.31
Search vendor "Ntp" for product "Ntp" and version "4.3.31"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.32
Search vendor "Ntp" for product "Ntp" and version "4.3.32"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.33
Search vendor "Ntp" for product "Ntp" and version "4.3.33"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.34
Search vendor "Ntp" for product "Ntp" and version "4.3.34"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.35
Search vendor "Ntp" for product "Ntp" and version "4.3.35"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.36
Search vendor "Ntp" for product "Ntp" and version "4.3.36"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.37
Search vendor "Ntp" for product "Ntp" and version "4.3.37"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.38
Search vendor "Ntp" for product "Ntp" and version "4.3.38"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.39
Search vendor "Ntp" for product "Ntp" and version "4.3.39"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.40
Search vendor "Ntp" for product "Ntp" and version "4.3.40"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.41
Search vendor "Ntp" for product "Ntp" and version "4.3.41"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.42
Search vendor "Ntp" for product "Ntp" and version "4.3.42"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.43
Search vendor "Ntp" for product "Ntp" and version "4.3.43"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.44
Search vendor "Ntp" for product "Ntp" and version "4.3.44"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.45
Search vendor "Ntp" for product "Ntp" and version "4.3.45"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.46
Search vendor "Ntp" for product "Ntp" and version "4.3.46"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.47
Search vendor "Ntp" for product "Ntp" and version "4.3.47"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.48
Search vendor "Ntp" for product "Ntp" and version "4.3.48"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.49
Search vendor "Ntp" for product "Ntp" and version "4.3.49"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.50
Search vendor "Ntp" for product "Ntp" and version "4.3.50"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.51
Search vendor "Ntp" for product "Ntp" and version "4.3.51"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.52
Search vendor "Ntp" for product "Ntp" and version "4.3.52"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.53
Search vendor "Ntp" for product "Ntp" and version "4.3.53"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.54
Search vendor "Ntp" for product "Ntp" and version "4.3.54"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.55
Search vendor "Ntp" for product "Ntp" and version "4.3.55"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.56
Search vendor "Ntp" for product "Ntp" and version "4.3.56"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.57
Search vendor "Ntp" for product "Ntp" and version "4.3.57"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.58
Search vendor "Ntp" for product "Ntp" and version "4.3.58"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.59
Search vendor "Ntp" for product "Ntp" and version "4.3.59"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.60
Search vendor "Ntp" for product "Ntp" and version "4.3.60"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.61
Search vendor "Ntp" for product "Ntp" and version "4.3.61"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.62
Search vendor "Ntp" for product "Ntp" and version "4.3.62"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.63
Search vendor "Ntp" for product "Ntp" and version "4.3.63"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.64
Search vendor "Ntp" for product "Ntp" and version "4.3.64"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.65
Search vendor "Ntp" for product "Ntp" and version "4.3.65"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.66
Search vendor "Ntp" for product "Ntp" and version "4.3.66"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.67
Search vendor "Ntp" for product "Ntp" and version "4.3.67"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.68
Search vendor "Ntp" for product "Ntp" and version "4.3.68"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.69
Search vendor "Ntp" for product "Ntp" and version "4.3.69"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.70
Search vendor "Ntp" for product "Ntp" and version "4.3.70"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.71
Search vendor "Ntp" for product "Ntp" and version "4.3.71"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.72
Search vendor "Ntp" for product "Ntp" and version "4.3.72"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.73
Search vendor "Ntp" for product "Ntp" and version "4.3.73"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.74
Search vendor "Ntp" for product "Ntp" and version "4.3.74"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.75
Search vendor "Ntp" for product "Ntp" and version "4.3.75"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.76
Search vendor "Ntp" for product "Ntp" and version "4.3.76"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.77
Search vendor "Ntp" for product "Ntp" and version "4.3.77"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.78
Search vendor "Ntp" for product "Ntp" and version "4.3.78"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.79
Search vendor "Ntp" for product "Ntp" and version "4.3.79"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.80
Search vendor "Ntp" for product "Ntp" and version "4.3.80"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.81
Search vendor "Ntp" for product "Ntp" and version "4.3.81"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.82
Search vendor "Ntp" for product "Ntp" and version "4.3.82"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.83
Search vendor "Ntp" for product "Ntp" and version "4.3.83"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.84
Search vendor "Ntp" for product "Ntp" and version "4.3.84"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.85
Search vendor "Ntp" for product "Ntp" and version "4.3.85"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.86
Search vendor "Ntp" for product "Ntp" and version "4.3.86"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.87
Search vendor "Ntp" for product "Ntp" and version "4.3.87"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.88
Search vendor "Ntp" for product "Ntp" and version "4.3.88"
-
Affected
Ntp
Search vendor "Ntp"
Ntp
Search vendor "Ntp" for product "Ntp"
4.3.89
Search vendor "Ntp" for product "Ntp" and version "4.3.89"
-
Affected
Suse
Search vendor "Suse"
Linux Enterprise Debuginfo
Search vendor "Suse" for product "Linux Enterprise Debuginfo"
11
Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11"
sp2
Affected
Suse
Search vendor "Suse"
Linux Enterprise Debuginfo
Search vendor "Suse" for product "Linux Enterprise Debuginfo"
11
Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11"
sp3
Affected
Suse
Search vendor "Suse"
Linux Enterprise Debuginfo
Search vendor "Suse" for product "Linux Enterprise Debuginfo"
11
Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11"
sp4
Affected
Suse
Search vendor "Suse"
Manager
Search vendor "Suse" for product "Manager"
2.1
Search vendor "Suse" for product "Manager" and version "2.1"
-
Affected
Suse
Search vendor "Suse"
Manager Proxy
Search vendor "Suse" for product "Manager Proxy"
2.1
Search vendor "Suse" for product "Manager Proxy" and version "2.1"
-
Affected
Novell
Search vendor "Novell"
Suse Openstack Cloud
Search vendor "Novell" for product "Suse Openstack Cloud"
5
Search vendor "Novell" for product "Suse Openstack Cloud" and version "5"
-
Affected
Opensuse
Search vendor "Opensuse"
Leap
Search vendor "Opensuse" for product "Leap"
42.1
Search vendor "Opensuse" for product "Leap" and version "42.1"
-
Affected
Opensuse
Search vendor "Opensuse"
Opensuse
Search vendor "Opensuse" for product "Opensuse"
13.2
Search vendor "Opensuse" for product "Opensuse" and version "13.2"
-
Affected
Suse
Search vendor "Suse"
Linux Enterprise Desktop
Search vendor "Suse" for product "Linux Enterprise Desktop"
12
Search vendor "Suse" for product "Linux Enterprise Desktop" and version "12"
-
Affected
Suse
Search vendor "Suse"
Linux Enterprise Desktop
Search vendor "Suse" for product "Linux Enterprise Desktop"
12
Search vendor "Suse" for product "Linux Enterprise Desktop" and version "12"
sp1
Affected
Suse
Search vendor "Suse"
Linux Enterprise Server
Search vendor "Suse" for product "Linux Enterprise Server"
10
Search vendor "Suse" for product "Linux Enterprise Server" and version "10"
sp4, ltss
Affected
Suse
Search vendor "Suse"
Linux Enterprise Server
Search vendor "Suse" for product "Linux Enterprise Server"
11
Search vendor "Suse" for product "Linux Enterprise Server" and version "11"
sp2, ltss
Affected
Suse
Search vendor "Suse"
Linux Enterprise Server
Search vendor "Suse" for product "Linux Enterprise Server"
11
Search vendor "Suse" for product "Linux Enterprise Server" and version "11"
sp3, ltss
Affected
Suse
Search vendor "Suse"
Linux Enterprise Server
Search vendor "Suse" for product "Linux Enterprise Server"
11
Search vendor "Suse" for product "Linux Enterprise Server" and version "11"
sp4
Affected
Suse
Search vendor "Suse"
Linux Enterprise Server
Search vendor "Suse" for product "Linux Enterprise Server"
12
Search vendor "Suse" for product "Linux Enterprise Server" and version "12"
sp1
Affected
Suse
Search vendor "Suse"
Suse Linux Enterprise Server
Search vendor "Suse" for product "Suse Linux Enterprise Server"
12
Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "12"
-
Affected