Kr00k

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Kr00k
CVE identifier(s)CVE-2019-15126
Date discovered2019
DiscovererESET
Affected hardwareBroadcom and Cypress Semiconductor WiFI chips
Websitehttps://www.eset.com/int/kr00k/

Kr00k is a security vulnerability that allows some WPA2 encrypted WiFi traffic to be decrypted.[1] The vulnerability was originally discovered by security company ESET in 2019 and assigned CVE-2019-15126 on August 17th, 2019.[2] ESET estimates that this vulnerability affects over a billion devices. [3]

Patches[edit]

The vulnerability is known to be patched in:

  • iOS 13.2 and iPadOS 13.2 - October 28, 2019 [1]
  • macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006 - October 29, 2019 [1]

Vulnerable Devices[edit]

During their research, ESET confirmed over a dozen popular devices were vulnerable.[3]

Cisco has found several of their devices to be vulnerable and are working on patches.[4] They are tracking the issue with advisory id cisco-sa-20200226-wi-fi-info-disclosure.[5]

Known vulnerable devices include:


References[edit]

  1. ^ a b c "A serious vulnerability deep inside Wi-Fi encryption | ESET". www.eset.com. Retrieved 2020-02-28.
  2. ^ "Kr00K vulnerability affects devices with Broadcom and Cypress Wi-Fi chips". xda-developers. 2020-02-27. Retrieved 2020-02-28.
  3. ^ a b https://www.welivesecurity.com/wp-content/uploads/2020/02/ESET_Kr00k.pdf
  4. ^ Osborne, Charlie. "Cisco patches incoming to address Kr00k vulnerability impacting routers, firewall products". ZDNet. Retrieved 2020-02-28.
  5. ^ "Wi-Fi Protected Network and Wi-Fi Protected Network 2 Information Disclosure Vulnerability". tools.cisco.com. Retrieved 2020-02-28.