vulnerability

F5: CVE-2016-2183: K13167034: OpenSSL vulnerability CVE-2016-2183

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Oct 4, 2016

Added

Jun 17, 2026

Modified

Jun 17, 2026

Description

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack.

Solution

f5-bigip-upgrade-latest

References

CVE-2016-2183
https://attackerkb.com/topics/CVE-2016-2183
https://my.f5.com/manage/s/article/K13167034
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-3268
CWE-200
EUVD-EUVD-2016-3268

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report