Authentication flaw

IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 through 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and AES GCM, uses random nonce generation, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonce in a session and a "forbidden...

Authentication flaw

A10 AX1030 and possibly other devices with software before 2.7.2-P8 uses random GCM nonce generations, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270...

CVE-2017-5933

Citrix NetScaler ADC and NetScaler Gateway 10.5 before Build 65.11, 11.0 before Build 69.12/69.123, and 11.1 before Build 51.21 randomly generates GCM nonces, which makes it marginally easier for remote attackers to obtain the GCM authentication key and spoof data by leveraging a reused nonce in ...

CVE-2017-5933

Citrix NetScaler ADC and NetScaler Gateway 10.5 before Build 65.11, 11.0 before Build 69.12/69.123, and 11.1 before Build 51.21 randomly generates GCM nonces, which makes it marginally easier for remote attackers to obtain the GCM authentication key and spoof data by leveraging a reused nonce in ...

CVE-2016-10212

CVE-2016-10212 describes a GCM nonce reuse issue in Radware devices (note: may involve a third-party Cavium product) that allows remote attackers to obtain the authentication key and spoof data via a “forbidden attack.” Root cause: reuse of the initial nonces in GCM. Affected: Radware devices. Ex...

CVE-2016-10213

CVE-2016-10213 affects A10 AX1030 and possibly other devices running software before 2.7.2-P8. The vulnerability arises from random GCM nonce generation, enabling remote attackers to obtain the authentication key and spoof data by reusing a nonce in a session, described as a “forbidden attack” si...

CVE-2016-0270

IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 through 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and AES GCM, uses random nonce generation, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonce in a session and a "forbidden...

Side-channel Timing Attack

OpenSSL is vulnerable to side-channel timing attacks. These attacks are possible because the Montgomery ladder implementation doesn't run swap operations in constant time which makes it easier for local users to obtain ECDSA nonce values...

Citrix NetScaler Nonce Generation Vulnerability (CTX220329)

A flaw has been identified in the GCM nonce generation functionality of Citrix NetScaler application Delivery Controller ADC and Citrix NetScaler Gateway that could result in the interception of session data. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from...

CVE-2017-5933 - Vulnerability in Citrix NetScaler Application Delivery Controller and NetScaler Gateway GCM nonce generation

Description of Problem A flaw in NetScaler ADC and Gateway causes GCM nonces to be randomly generated, making it marginally easier for remote attackers to obtain the GCM authentication key and spoof data within a session. The following vulnerability has been addressed: CVE-2017-5933: Vulnerabilit...

Replay Attack

libzmq aka ZeroMQ is vulnerable to replay attacks. It is due to a flaw in the creation and validation of nonces, failing to detect nonces and disconnect malicious peers...

SUSE SLES12 Security Update : squid (SUSE-SU-2017:0128-1)

This update for squid fixes the following issues : - CVE-2016-10003: Prevent incorrect forwarding of cached private responses when Collapsed Forwarding feature is enabled. This allowed remote attacker proxy user to discover private and sensitive information about another user bsc1016169. -...

SUSE-SU-2017:0128-1 Security update for squid

This update for squid fixes the following issues: - CVE-2016-10003: Prevent incorrect forwarding of cached private responses when Collapsed Forwarding feature is enabled. This allowed remote attacker proxy user to discover private and sensitive information about another user bsc1016169. -...

SUSE SLES12 Security Update : squid (SUSE-SU-2017:0116-1)

This update for squid fixes the following issues : - CVE-2016-10002: Fixed incorrect processing of responses to If-None-Modified HTTP conditional requests. This allowed responses containing private data to clients it should not have reached bsc1016168 - CVE-2014-9749: Prevent nonce replay in Dige...

SUSE-SU-2017:0116-1 Security update for squid

This update for squid fixes the following issues: - CVE-2016-10002: Fixed incorrect processing of responses to If-None-Modified HTTP conditional requests. This allowed responses containing private data to clients it should not have reached bsc1016168 - CVE-2014-9749: Prevent nonce replay in Diges...

SUSE-SU-2017:0110-1 Security update for squid3

This update for squid3 fixes the following issues: - CVE-2016-10002: Fixed incorrect processing of responses to If-None-Modified HTTP conditional requests. This allowed responses containing private data to clients it should not have reached bsc1016168 - CVE-2014-9749: Prevent nonce replay in Dige...

CVE-2016-1000032

TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times...

Information disclosure

TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times...

CVE-2016-1000032

TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times...

CVE-2016-1000032

CVE-2016-1000032 affects TGCaptcha2 version 0.3.0, where a missing nonce allows a solved CAPTCHA to be reused, enabling a replay attack. The provided connected documents corroborate this vulnerability and describe the core issue as a replay vulnerability due to the missing nonce. Impact is a sing...