Vulnerability Details CVE-2016-10213
A10 AX1030 and possibly other devices with software before 2.7.2-P8 uses random GCM nonce generations, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 70.9%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
Products affected by CVE-2016-10213
-
cpe:2.3:o:a10networks:advanced_core_operating_system:2.7.2