CVE-2016-10212 - OpenCVE

Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Radware	Alteon

Configuration 1 [-]

OR	cpe:2.3:o:radware:alteon::::::::
	cpe:2.3:o:radware:alteon::::::::

No data.

References

Link	Providers
http://www.securityfocus.com/bid/96172
https://github.com/nonce-disrespect/nonce-disrespect
https://support.radware.com/app/answers/answer_view/a_id/18456

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-02-08T16:00:00

Updated: 2024-08-06T03:14:42.338Z

Reserved: 2017-02-08T00:00:00

Link: CVE-2016-10212

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2017-02-08T16:59:00.180

Modified: 2017-03-02T16:12:41.663

Link: CVE-2016-10212

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-02-01T00:00:00", "descriptions": [{"lang": "en", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-02-28T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}, {"name": "96172", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/96172"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-10212", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/nonce-disrespect/nonce-disrespect", "refsource": "MISC", "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"name": "https://support.radware.com/app/answers/answer_view/a_id/18456", "refsource": "CONFIRM", "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}, {"name": "96172", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96172"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T03:14:42.338Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}, {"name": "96172", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/96172"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-10212", "datePublished": "2017-02-08T16:00:00", "dateReserved": "2017-02-08T00:00:00", "dateUpdated": "2024-08-06T03:14:42.338Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:radware:alteon:*:*:*:*:*:*:*:*", "matchCriteriaId": "FCDE2E08-3B2A-4EB3-97D4-B361104B0660", "versionEndIncluding": "30.0.5.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:radware:alteon:*:*:*:*:*:*:*:*", "matchCriteriaId": "DF3497AB-4899-4AAD-9DB6-FDDD5FE2636E", "versionEndIncluding": "30.2.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}, {"lang": "es", "value": "Dispositivos Radware utilizan el mismo valor para los dos primeros GCM nonces, lo que permite a atacantes remotos obtener la clave de autenticaci\u00f3n y suplantar data a trav\u00e9s de un \"ataque prohibido\", un problema similar a CVE-2016-0270. NOTA: este problema puede deberse al uso de un producto Cavium de terceros."}], "id": "CVE-2016-10212", "lastModified": "2017-03-02T16:12:41.663", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-02-08T16:59:00.180", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/96172"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}