Tuxfamily - Chrony CVE

Filtered by vendor Tuxfamily Subscribe

Filtered by product Chrony

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-1567	1 Tuxfamily	1 Chrony	2016-12-06	6.8 MEDIUM	8.1 HIGH
chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."

Vulnerabilities (CVE)