Simatic Net Cp 443 1 Opc Ua Firmware

simatic_net_cp_443-1_opc_ua_firmware

Vendor: Siemens • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2016-9042 4Freebsd HpeNtp+1 more 4Freebsd Hpux NtpNtp+1 more Nov 21, 2024 Jun 4, 2018 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for...Show more An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.Show less
CVE-2017-6458 4Apple HpeNtp+1 more 4Hpux Ntp Mac Os XNtp+1 more May 13, 2026 Mar 27, 2017 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.
CVE-2016-2518 7Debian FreebsdNetapp+4 more 17Clustered Data Ontap Communications User Data RepositoryData Ontap+14 more May 13, 2026 Jan 30, 2017 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.
CVE-2016-4956 6Novell NtpOpensuse+3 more 10Leap Linux Enterprise DesktopLinux Enterprise Server+7 more May 6, 2026 Jul 5, 2016 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete...Show more ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.Show less
CVE-2016-4955 6Novell NtpOpensuse+3 more 10Leap Linux Enterprise DesktopLinux Enterprise Server+7 more May 6, 2026 Jul 5, 2016 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet wit...Show more ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.Show less
CVE-2016-4954 5Ntp OpensuseOracle+2 more 12Leap Linux Enterprise DesktopLinux Enterprise Server+9 more May 6, 2026 Jul 5, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a...Show more The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.Show less
CVE-2016-4953 5Ntp OpensuseOracle+2 more 12Leap Linux Enterprise DesktopLinux Enterprise Server+9 more May 6, 2026 Jul 5, 2016 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.