vulnerability

FreeBSD: VID-af485ef4-1c58-11e8-8477-d05099c0ae8c (CVE-2018-7182): ntp -- multiple vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Feb 28, 2018

Added

May 6, 2018

Modified

Jun 15, 2026

Description

The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.

Solutions

freebsd-upgrade-base-11_1-release-p7freebsd-upgrade-base-10_4-release-p6freebsd-upgrade-base-10_3-release-p27freebsd-upgrade-package-ntpfreebsd-upgrade-package-ntp-devel

References

CVE-2018-7182
https://attackerkb.com/topics/CVE-2018-7182
CWE-125
EUVD-EUVD-2018-18924
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-18924

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report