Primary

Context

ALBEDO Telecom Net.Time PTP/NTP Clock Insufficient Session Expiration Vulnerability

Vulnerability

A vulnerability exists in ALBEDO Telecom Net.Time - PTP/NTP clock, specifically in software release 1.4.4 (Serial No. NBC0081P). The issue arises from insufficient session expiration, which could allow an attacker to send passwords over unencrypted connections, making the product susceptible to interception.

Impact

Exploitation of this vulnerability could enable an attacker to intercept passwords transmitted over unencrypted connections, potentially leading to unauthorized access or manipulation of the device.

Remediation

Users are advised to update the Net.Time - PTP/NTP clock to version 1.6.1. For more information, contact ALBEDO Telecom.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ALBEDO Telecom Net.Time PTP/NTP Clock Insufficient Session Expiration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating