CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10213
https://notcve.org/view.php?id=CVE-2016-10213
08 Feb 2017 — A10 AX1030 and possibly other devices with software before 2.7.2-P8 uses random GCM nonce generations, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging a reused nonce in a session and a "forbidden attack," a similar issue to CVE-2016-0270. A10 AX1030 y posiblemente otros dispositivos con software en versiones anteriores a 2.7.2-P8 utiliza generaciones aleatorias de GCM nonce, lo que facilita a atacantes remotos obtener la clave de autenticación y supla... • http://www.securityfocus.com/bid/96163 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 35%CPEs: 2EXPL: 5CVE-2014-3976 – A10 Networks ACOS 2.7.0-P2 (Build 53) - Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2014-3976
05 Jun 2014 — Buffer overflow in A10 Networks Advanced Core Operating System (ACOS) before 2.7.0-p6 and 2.7.1 before 2.7.1-P1_55 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long session id in the URI to sys_reboot.html. NOTE: some of these details are obtained from third party information. Desbordamiento de buffer en A10 Networks Advanced Core Operating System (ACOS) anterior a 2.7.0-p6 y 2.7.1 anterior a 2.7.1-P1_55 permite a atacantes remotos causar una denegac... • https://www.exploit-db.com/exploits/32702 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •