Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-6442

An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can write one byte out of bounds in ntpd via a malformed config request, related to config_remotely in ntp_config.c, yyparse in ntp_parser.tab.c, and yyerror in ntp_parser.y.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.153
EPSS Ranking 94.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2019-6442
  • Ntpsec » Ntpsec » Version: 0.9.0
    cpe:2.3:a:ntpsec:ntpsec:0.9.0
  • Ntpsec » Ntpsec » Version: 0.9.1
    cpe:2.3:a:ntpsec:ntpsec:0.9.1
  • Ntpsec » Ntpsec » Version: 0.9.2
    cpe:2.3:a:ntpsec:ntpsec:0.9.2
  • Ntpsec » Ntpsec » Version: 0.9.3
    cpe:2.3:a:ntpsec:ntpsec:0.9.3
  • Ntpsec » Ntpsec » Version: 0.9.4
    cpe:2.3:a:ntpsec:ntpsec:0.9.4
  • Ntpsec » Ntpsec » Version: 0.9.5
    cpe:2.3:a:ntpsec:ntpsec:0.9.5
  • Ntpsec » Ntpsec » Version: 0.9.5.1
    cpe:2.3:a:ntpsec:ntpsec:0.9.5.1
  • Ntpsec » Ntpsec » Version: 0.9.6
    cpe:2.3:a:ntpsec:ntpsec:0.9.6
  • Ntpsec » Ntpsec » Version: 0.9.7
    cpe:2.3:a:ntpsec:ntpsec:0.9.7
  • Ntpsec » Ntpsec » Version: 0.9.8
    cpe:2.3:a:ntpsec:ntpsec:0.9.8
  • Ntpsec » Ntpsec » Version: 1.0.0
    cpe:2.3:a:ntpsec:ntpsec:1.0.0
  • Ntpsec » Ntpsec » Version: 1.1.0
    cpe:2.3:a:ntpsec:ntpsec:1.1.0
  • Ntpsec » Ntpsec » Version: 1.1.1
    cpe:2.3:a:ntpsec:ntpsec:1.1.1
  • Ntpsec » Ntpsec » Version: 1.1.2
    cpe:2.3:a:ntpsec:ntpsec:1.1.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved