vulnerability
Juniper Junos OS: 2018-10 Security Bulletin: Junos OS: Multiple vulnerabilities in NTP [VU#961909] (JSA10898) (multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Mar 8, 2018 | Oct 11, 2018 | Aug 11, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Mar 8, 2018
Added
Oct 11, 2018
Modified
Aug 11, 2025
Description
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Solution
juniper-junos-os-upgrade-latest
References
- CVE-2015-7704
- https://attackerkb.com/topics/CVE-2015-7704
- CVE-2016-1549
- https://attackerkb.com/topics/CVE-2016-1549
- CVE-2018-7170
- https://attackerkb.com/topics/CVE-2018-7170
- CVE-2018-7182
- https://attackerkb.com/topics/CVE-2018-7182
- CVE-2018-7183
- https://attackerkb.com/topics/CVE-2018-7183
- CVE-2018-7184
- https://attackerkb.com/topics/CVE-2018-7184
- CVE-2018-7185
- https://attackerkb.com/topics/CVE-2018-7185
- CWE-787
- JUNIPER-JSA10898
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.