Filtered by vendor Radware
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-17427 | 1 Radware | 2 Alteon, Alteon Firmware | 2024-11-21 | 4.3 MEDIUM | 5.9 MEDIUM |
Radware Alteon devices with a firmware version between 31.0.0.0-31.0.3.0 are vulnerable to an adaptive-chosen ciphertext attack ("Bleichenbacher attack"). This allows an attacker to decrypt observed traffic that has been encrypted with the RSA cipher and to perform other private key operations. | |||||
CVE-2016-10212 | 1 Radware | 1 Alteon | 2024-11-21 | 4.3 MEDIUM | 5.9 MEDIUM |
Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product. | |||||
CVE-2009-2301 | 1 Radware | 2 Appwall, Gateway | 2024-11-21 | 7.8 HIGH | N/A |
The radware AppWall Web Application Firewall (WAF) 1.0.2.6, with Gateway 4.6.0.2, allows remote attackers to read source code via a direct request to (1) funcs.inc, (2) defines.inc, or (3) msg.inc in Management/. |