Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-17427 | 1 Radware | 2 Alteon, Alteon Firmware | 2019-10-02 | 4.3 MEDIUM | 5.9 MEDIUM |
Radware Alteon devices with a firmware version between 31.0.0.0-31.0.3.0 are vulnerable to an adaptive-chosen ciphertext attack ("Bleichenbacher attack"). This allows an attacker to decrypt observed traffic that has been encrypted with the RSA cipher and to perform other private key operations. | |||||
CVE-2016-10212 | 1 Radware | 1 Alteon | 2017-03-02 | 4.3 MEDIUM | 5.9 MEDIUM |
Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product. |