← voltar
CVE-2016-10213

CVE-2016-10213

EPSS 2.1%
A10 AX1030 and possibly other devices with software before 2.7.2-P8 uses random GCM nonce generations, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/nonce-disrespect/nonce-disrespecthttps://www.a10networks.com/blog/cve-2016-0270-gcm-nonce-vulnerabilityhttp://www.securityfocus.com/bid/96163