High severity7.5NVD Advisory· Published Sep 1, 2016· Updated May 6, 2026
CVE-2016-2183
CVE-2016-2183
Description
The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
137- www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlnvdPatchThird Party Advisory
- www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.htmlnvdPatchThird Party Advisory
- kb.juniper.net/InfoCenter/indexnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-01/msg00068.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-02/msg00003.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-02/msg00023.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-02/msg00028.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-02/msg00032.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-05/msg00076.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.htmlnvdMailing ListThird Party Advisory
- packetstormsecurity.com/files/142756/IBM-Informix-Dynamic-Server-DLL-Injection-Code-Execution.htmlnvdThird Party AdvisoryVDB Entry
- rhn.redhat.com/errata/RHSA-2017-0336.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2017-0337.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2017-0338.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2017-0462.htmlnvdThird Party Advisory
- seclists.org/fulldisclosure/2017/Jul/31nvdMailing ListThird Party Advisory
- seclists.org/fulldisclosure/2017/May/105nvdMailing ListThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www-01.ibm.com/support/docview.wssnvdThird Party Advisory
- www.debian.org/security/2016/dsa-3673nvdThird Party Advisory
- www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-ennvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.htmlnvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.htmlnvdThird Party Advisory
- www.securityfocus.com/archive/1/539885/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/540341/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/541104/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/542005/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/archive/1/539885/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/archive/1/540129/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/archive/1/540341/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/archive/1/541104/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/archive/1/542005/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/92630nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/95568nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036696nvdThird Party AdvisoryVDB Entry
- www.splunk.com/view/SP-CAAAPSVnvdThird Party Advisory
- www.splunk.com/view/SP-CAAAPUEnvdThird Party Advisory
- www.ubuntu.com/usn/USN-3087-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3087-2nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3179-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3194-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3198-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3270-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-3372-1nvdThird Party Advisory
- access.redhat.com/articles/2548661nvdMitigationThird Party Advisory
- access.redhat.com/errata/RHSA-2017:1216nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2708nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2709nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2710nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:3113nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:3114nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:3239nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:3240nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2123nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:1245nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:2859nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2020:0451nvdThird Party Advisory
- access.redhat.com/security/cve/cve-2016-2183nvdThird Party Advisory
- blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/nvdPress/Media CoverageTechnical DescriptionThird Party Advisory
- bto.bluecoat.com/security-advisory/sa133nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- github.com/ssllabs/ssllabs-scan/issues/387nvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvdThird Party Advisory
- ics-cert.us-cert.gov/advisories/ICSMA-18-058-02nvdThird Party AdvisoryUS Government Resource
- kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312nvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- kc.mcafee.com/corporate/indexnvdThird Party Advisory
- nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/nvdPress/Media CoverageTechnical DescriptionThird Party Advisory
- nodejs.org/en/blog/vulnerability/september-2016-security-releases/nvdThird Party Advisory
- seclists.org/bugtraq/2018/Nov/21nvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/201612-16nvdThird Party Advisory
- security.gentoo.org/glsa/201701-65nvdThird Party Advisory
- security.gentoo.org/glsa/201707-01nvdThird Party Advisory
- security.netapp.com/advisory/ntap-20160915-0001/nvdThird Party Advisory
- security.netapp.com/advisory/ntap-20170119-0001/nvdThird Party Advisory
- softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03158613nvdThird Party Advisory
- softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03286178nvdThird Party Advisory
- support.f5.com/csp/article/K13167034nvdThird Party Advisory
- sweet32.infonvdTechnical DescriptionThird Party Advisory
- wiki.opendaylight.org/view/Security_AdvisoriesnvdThird Party Advisory
- www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24nvdThird Party Advisory
- www.exploit-db.com/exploits/42091/nvdThird Party AdvisoryVDB Entry
- www.ietf.org/mail-archive/web/tls/current/msg04560.htmlnvdMailing ListThird Party Advisory
- www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008nvdThird Party Advisory
- www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/nvdPress/Media CoverageTechnical DescriptionThird Party Advisory
- www.openssl.org/blog/blog/2016/08/24/sweet32/nvdMitigationPress/Media CoverageThird Party Advisory
- www.oracle.com/security-alerts/cpuapr2020.htmlnvdThird Party Advisory
- www.oracle.com/security-alerts/cpujan2020.htmlnvdThird Party Advisory
- www.oracle.com/security-alerts/cpujul2020.htmlnvdThird Party Advisory
- www.oracle.com/security-alerts/cpuoct2020.htmlnvdThird Party Advisory
- www.oracle.com/security-alerts/cpuoct2021.htmlnvdThird Party Advisory
- www.sigsac.org/ccs/CCS2016/accepted-papers/nvdThird Party Advisory
- www.tenable.com/security/tns-2016-16nvdThird Party Advisory
- www.tenable.com/security/tns-2016-20nvdThird Party Advisory
- www.tenable.com/security/tns-2016-21nvdThird Party Advisory
- www.tenable.com/security/tns-2017-09nvdThird Party Advisory
- www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issuenvdThird Party Advisory
- cert-portal.siemens.com/productcert/pdf/ssa-412672.pdfnvd
- www.vicarius.io/vsociety/posts/cve-2016-2183-detection-sweet32-vulnerabilitynvd
- www.vicarius.io/vsociety/posts/cve-2016-2183-mitigate-sweet32-vulnerabilitynvd
News mentions
0No linked articles in our index yet.