Vulnerability: Authentication Key Spoofing in Radware Devices
CVE-2016-10212 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:N/A:N
Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product.
Learn more about our Web Application Penetration Testing UK.