CVE-2020-13817
Last modified
CVE-2020-13817 is a high-severity vulnerability rated 7.4/10 on the CVSS scale. ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. EPSS estimates a 4.07% chance of exploitation in the next 30 days.
Description
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim's ntpd instance.
Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ntp | Ntp | < 4.2.8 |
| Ntp | Ntp | >= 4.3.0, < 4.3.100 |
| Ntp | Ntp | 4.2.8 |
| Netapp | Cloud Backup | All versions |
| Netapp | Clustered Data Ontap | All versions |
| Netapp | Data Ontap | All versions |
| Netapp | Element Software | All versions |
| Netapp | Hci Management Node | All versions |
| Netapp | Ontap Tools | All versions |
| Netapp | Solidfire | All versions |
| Netapp | Steelstore Cloud Integrated Storage | All versions |
| Netapp | Hci Compute Node Firmware | All versions |
| Netapp | H410c Firmware | All versions |
| Netapp | H300s Firmware | All versions |
| Netapp | H500s Firmware | All versions |
| Netapp | H700s Firmware | All versions |
| Netapp | H300e Firmware | All versions |
| Netapp | H500e Firmware | All versions |
| Netapp | H700e Firmware | All versions |
| Netapp | H410s Firmware | All versions |
| Opensuse | Leap | 15.1 |
| Opensuse | Leap | 15.2 |
| Fujitsu | M10-1 Firmware | < xcp2410 |
| Fujitsu | M10-4 Firmware | < xcp2410 |
| Fujitsu | M10-4s Firmware | < xcp2410 |
| Fujitsu | M12-1 Firmware | < xcp2410 |
| Fujitsu | M12-2 Firmware | < xcp2410 |
| Fujitsu | M12-2s Firmware | < xcp2410 |
| Fujitsu | M10-4 Firmware | < xcp3110 |
| Fujitsu | M10-4s Firmware | < xcp3110 |
| Fujitsu | M12-1 Firmware | < xcp3110 |
| Fujitsu | M12-2 Firmware | < xcp3110 |
| Fujitsu | M12-2s Firmware | < xcp3110 |
References
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00005.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00044.htmlMailing List, Third Party Advisory
- http://support.ntp.org/bin/view/Main/NtpBug3596Vendor Advisory
- https://bugs.ntp.org/show_bug.cgi?id=3596Issue Tracking, Vendor Advisory
- https://security.gentoo.org/glsa/202007-12Third Party Advisory
- https://security.netapp.com/advisory/ntap-20200625-0004/Third Party Advisory
- https://www.oracle.com/security-alerts/cpujan2022.htmlPatch, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00005.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00044.htmlMailing List, Third Party Advisory
- http://support.ntp.org/bin/view/Main/NtpBug3596Vendor Advisory
- https://bugs.ntp.org/show_bug.cgi?id=3596Issue Tracking, Vendor Advisory
- https://security.gentoo.org/glsa/202007-12Third Party Advisory
- https://security.netapp.com/advisory/ntap-20200625-0004/Third Party Advisory
- https://www.oracle.com/security-alerts/cpujan2022.htmlPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-13817?
How severe is CVE-2020-13817?
How do I fix CVE-2020-13817?
Are you affected by CVE-2020-13817?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST