CVE-2014-5209
MEDIUMNTP 4.2.7p25 - Information Disclosure via GET_RESTRICT Control Message
Title source: llmDescription
An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K44942017
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K44942017?utm_source=f5support&%3Butm_medium=RSS
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/95841
Scores
CVSS v3
5.3
EPSS
0.0053
EPSS Percentile
67.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (44)
f5/big-ip_access_policy_manager
11.2.1
f5/big-ip_access_policy_manager
15.0.0
f5/big-ip_access_policy_manager
10.2.1 - 10.2.4
f5/big-ip_advanced_firewall_manager
15.0.0
f5/big-ip_advanced_firewall_manager
11.4.0 - 11.6.4
f5/big-ip_analytics
11.2.1
f5/big-ip_analytics
15.0.0
f5/big-ip_analytics
11.4.0 - 11.6.4
f5/big-ip_application_acceleration_manager
15.0.0
f5/big-ip_application_acceleration_manager
11.4.0 - 11.6.4
... and 34 more
Published
Jan 08, 2020
Tracked Since
Feb 18, 2026