Vulnerability: Authentication Key Spoofing in Radware Devices

Vulnerability: Authentication Key Spoofing in Radware Devices

CVE-2016-10212 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product.

Learn more about our Web Application Penetration Testing UK.