Vendor scorecard
Radware
Radware security disclosure record — CVE volume, CVSS severity mix and product-category breakdown, sourced from the NIST NVD.
CPE: radware
Product families
1
Open in latest
1
Inferred — see methodology
Last disclosure
Dec 13, 2017
01
Product categories
1 trackedCVE volume, severity mix and the inferred latest shipping version per category.
| Category | CVEs | Volume | Severity mix | Open | Inferred latest |
|---|---|---|---|---|---|
| Alteon / DefenseProApplication Delivery / ADC · Network Detection / IDS-IPSalteon, alteon_operating_system, defensepro | 1 | 1 | 30.2.1.1LOW |
02
Recent CVEs
2 shownMost recently published, newest first. Each ID links to its NVD record.
| CVE | Severity | CVSS | Summary | Published |
|---|---|---|---|---|
| CVE-2017-17427(opens NVD record) | Medium | 5.9 | Radware Alteon devices with a firmware version between 31.0.0.0-31.0.3.0 are vulnerable to an adaptive-chosen ciphertext attack ("Bleichenbacher attack"). This allows an attacker to decrypt observed traffic that has been encrypted with the RSA cipher and to perform other private key operations. | Dec 13, 2017 |
| CVE-2016-10212(opens NVD record) | Medium | 5.9 | Radware devices use the same value for the first two GCM nonces, which allows remote attackers to obtain the authentication key and spoof data via a "forbidden attack," a similar issue to CVE-2016-0270. NOTE: this issue may be due to the use of a third-party Cavium product. | Feb 8, 2017 |
1 CVEs · 1 product families