VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
epss	0.33271	https://api.first.org/data/v1/epss?cve=CVE-2014-9294
cvssv2	7.5	https://nvd.nist.gov/vuln/detail/CVE-2014-9294

System

Score

Found at

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

epss

0.33271

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

cvssv2

7.5

https://nvd.nist.gov/vuln/detail/CVE-2014-9294

Reference id

Reference type

URL

http://advisories.mageia.org/MGASA-2014-0541.html

http://bk1.ntp.org/ntp-dev/util/ntp-keygen.c?PAGE=diffs&REV=4eae1b72298KRoBQmX-y8URCiRPH5g

http://bugs.ntp.org/show_bug.cgi?id=2666

http://marc.info/?l=bugtraq&m=142469153211996&w=2

http://marc.info/?l=bugtraq&m=142590659431171&w=2

http://marc.info/?l=bugtraq&m=142853370924302&w=2

http://marc.info/?l=bugtraq&m=144182594518755&w=2

http://rhn.redhat.com/errata/RHSA-2014-2025.html

http://rhn.redhat.com/errata/RHSA-2015-0104.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9294.json

https://api.first.org/data/v1/epss?cve=CVE-2014-9294

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296

http://secunia.com/advisories/62209

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783

https://kc.mcafee.com/corporate/index?page=content&id=SB10103

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd

http://support.ntp.org/bin/view/Main/SecurityNotice

https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8

http://www.kb.cert.org/vuls/id/852879

http://www.mandriva.com/security/advisories?name=MDVSA-2015:003

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

http://www.securityfocus.com/bid/71762

1176035

https://bugzilla.redhat.com/show_bug.cgi?id=1176035

773576

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773576

cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*

CVE-2014-9294

https://nvd.nist.gov/vuln/detail/CVE-2014-9294

GLSA-201412-34

https://security.gentoo.org/glsa/201412-34

RHSA-2014:2024

https://access.redhat.com/errata/RHSA-2014:2024

RHSA-2014:2025

https://access.redhat.com/errata/RHSA-2014:2025

RHSA-2015:0104

https://access.redhat.com/errata/RHSA-2015:0104

USN-2449-1

https://usn.ubuntu.com/2449-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:02:45.015623+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201412-34	38.0.0

2026-04-01T13:02:45.015623+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201412-34

38.0.0

Vulnerability ID	VCID-rx8v-vhpd-ykg2
Aliases	CVE-2014-9294
Summary	Multiple vulnerabilities have been found in NTP, the worst of which could result in remote execution of arbitrary code.
Status	Published
Exploitability	0.5
Weighted Severity	6.8
Risk	3.4
Affected and Fixed Packages	Package Details

CWE-335	Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)
CWE-338	Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Percentile	0.96881
EPSS Score	0.33271
Published At	April 1, 2026, 12:55 p.m.