CVE-2016-10212 - OpenCVE

Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product.

No CVSS v3.1

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Radware	Alteon

Configuration 1 [-]

OR	cpe:2.3:o:radware:alteon::::::::
	cpe:2.3:o:radware:alteon::::::::

References

Link	Resource
http://www.securityfocus.com/bid/96172	Third Party Advisory VDB Entry
https://github.com/nonce-disrespect/nonce-disrespect	Third Party Advisory
https://support.radware.com/app/answers/answer_view/a_id/18456	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-02-08T16:00:00

Updated: 2017-02-28T10:57:01

Reserved: 2017-02-08T00:00:00

Link: CVE-2016-10212

JSON object: View

NVD Information

Status : Analyzed

Published: 2017-02-08T16:59:00.180

Modified: 2017-03-02T16:12:41.663

Link: CVE-2016-10212

JSON object: View

Redhat Information

No data.

CWE

CWE-200

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-02-01T00:00:00", "descriptions": [{"lang": "en", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-02-28T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}, {"name": "96172", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/96172"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-10212", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/nonce-disrespect/nonce-disrespect", "refsource": "MISC", "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"name": "https://support.radware.com/app/answers/answer_view/a_id/18456", "refsource": "CONFIRM", "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}, {"name": "96172", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96172"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-10212", "datePublished": "2017-02-08T16:00:00", "dateReserved": "2017-02-08T00:00:00", "dateUpdated": "2017-02-28T10:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:radware:alteon:*:*:*:*:*:*:*:*", "matchCriteriaId": "FCDE2E08-3B2A-4EB3-97D4-B361104B0660", "versionEndIncluding": "30.0.5.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:radware:alteon:*:*:*:*:*:*:*:*", "matchCriteriaId": "DF3497AB-4899-4AAD-9DB6-FDDD5FE2636E", "versionEndIncluding": "30.2.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a \"forbidden attack,\" a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product."}, {"lang": "es", "value": "Dispositivos Radware utilizan el mismo valor para los dos primeros GCM nonces, lo que permite a atacantes remotos obtener la clave de autenticaci\u00f3n y suplantar data a trav\u00e9s de un \"ataque prohibido\", un problema similar a CVE-2016-0270. NOTA: este problema puede deberse al uso de un producto Cavium de terceros."}], "id": "CVE-2016-10212", "lastModified": "2017-03-02T16:12:41.663", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-02-08T16:59:00.180", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/96172"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/nonce-disrespect/nonce-disrespect"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://support.radware.com/app/answers/answer_view/a_id/18456"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}