CVE-2016-10213

2017-02-08T16:59:00
ID CVE-2016-10213
Type cve
Reporter cve@mitre.org
Modified 2017-03-01T14:02:00

Description

A10 AX1030 and possibly other devices with software before 2.7.2-P8 uses random GCM nonce generations, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270.