CVE-2017-13082 (KRACK)

CVSS v3.0 8.1 (High)

CVSS v2.0 5.8 (Medium)

EPSS 0.12 % (47^th)

Affected Products 12

Advisories 24

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

Weaknesses

CWE-323: Reusing a Nonce, Key Pair in Encryption
CWE-330: Use of Insufficiently Random Values

Alias

KRACK

Related CVEs

CVE Status: PUBLISHED
CNA: CERT/CC
Published Date: 2017-10-17 13:29:00
(6 years ago)
Updated Date: 2019-10-03 00:03:26
(5 years ago)

Affected Products

Redhat

Suse

W1.fi

Configuration #1

		CPE23	From	Up To
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:lts
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:lts
	Canonical Ubuntu Linux 17.04	cpe:2.3:o:canonical:ubuntu_linux:17.04
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0
	Freebsd	cpe:2.3:o:freebsd:freebsd
	Freebsd 10	cpe:2.3:o:freebsd:freebsd:10
	Freebsd 10.4	cpe:2.3:o:freebsd:freebsd:10.4
	Freebsd 11	cpe:2.3:o:freebsd:freebsd:11
	Freebsd 11.1	cpe:2.3:o:freebsd:freebsd:11.1
	Opensuse Leap 42.2	cpe:2.3:o:opensuse:leap:42.2
	Opensuse Leap 42.3	cpe:2.3:o:opensuse:leap:42.3
	Redhat Enterprise Linux Desktop 7	cpe:2.3:o:redhat:enterprise_linux_desktop:7
	Redhat Enterprise Linux Server 7	cpe:2.3:o:redhat:enterprise_linux_server:7

Configuration #2

		CPE23	From	Up To
	W1.fi Hostapd 0.2.4	cpe:2.3:a:w1.fi:hostapd:0.2.4
	W1.fi Hostapd 0.2.5	cpe:2.3:a:w1.fi:hostapd:0.2.5
	W1.fi Hostapd 0.2.6	cpe:2.3:a:w1.fi:hostapd:0.2.6
	W1.fi Hostapd 0.2.8	cpe:2.3:a:w1.fi:hostapd:0.2.8
	W1.fi Hostapd 0.3.7	cpe:2.3:a:w1.fi:hostapd:0.3.7
	W1.fi Hostapd 0.3.9	cpe:2.3:a:w1.fi:hostapd:0.3.9
	W1.fi Hostapd 0.3.10	cpe:2.3:a:w1.fi:hostapd:0.3.10
	W1.fi Hostapd 0.3.11	cpe:2.3:a:w1.fi:hostapd:0.3.11
	W1.fi Hostapd 0.4.7	cpe:2.3:a:w1.fi:hostapd:0.4.7
	W1.fi Hostapd 0.4.8	cpe:2.3:a:w1.fi:hostapd:0.4.8
	W1.fi Hostapd 0.4.9	cpe:2.3:a:w1.fi:hostapd:0.4.9
	W1.fi Hostapd 0.4.10	cpe:2.3:a:w1.fi:hostapd:0.4.10
	W1.fi Hostapd 0.4.11	cpe:2.3:a:w1.fi:hostapd:0.4.11
	W1.fi Hostapd 0.5.7	cpe:2.3:a:w1.fi:hostapd:0.5.7
	W1.fi Hostapd 0.5.8	cpe:2.3:a:w1.fi:hostapd:0.5.8
	W1.fi Hostapd 0.5.9	cpe:2.3:a:w1.fi:hostapd:0.5.9
	W1.fi Hostapd 0.5.10	cpe:2.3:a:w1.fi:hostapd:0.5.10
	W1.fi Hostapd 0.5.11	cpe:2.3:a:w1.fi:hostapd:0.5.11
	W1.fi Hostapd 0.6.8	cpe:2.3:a:w1.fi:hostapd:0.6.8
	W1.fi Hostapd 0.6.9	cpe:2.3:a:w1.fi:hostapd:0.6.9
	W1.fi Hostapd 0.6.10	cpe:2.3:a:w1.fi:hostapd:0.6.10
	W1.fi Hostapd 0.7.3	cpe:2.3:a:w1.fi:hostapd:0.7.3
	W1.fi Hostapd 1.0	cpe:2.3:a:w1.fi:hostapd:1.0
	W1.fi Hostapd 1.1	cpe:2.3:a:w1.fi:hostapd:1.1
	W1.fi Hostapd 2.0	cpe:2.3:a:w1.fi:hostapd:2.0
	W1.fi Hostapd 2.1	cpe:2.3:a:w1.fi:hostapd:2.1
	W1.fi Hostapd 2.2	cpe:2.3:a:w1.fi:hostapd:2.2
	W1.fi Hostapd 2.3	cpe:2.3:a:w1.fi:hostapd:2.3
	W1.fi Hostapd 2.4	cpe:2.3:a:w1.fi:hostapd:2.4
	W1.fi Hostapd 2.5	cpe:2.3:a:w1.fi:hostapd:2.5
	W1.fi Hostapd 2.6	cpe:2.3:a:w1.fi:hostapd:2.6
	W1.fi Wpa Supplicant 0.2.4	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.4
	W1.fi Wpa Supplicant 0.2.5	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.5
	W1.fi Wpa Supplicant 0.2.6	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.6
	W1.fi Wpa Supplicant 0.2.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.7
	W1.fi Wpa Supplicant 0.2.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.8
	W1.fi Wpa Supplicant 0.3.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.7
	W1.fi Wpa Supplicant 0.3.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.8
	W1.fi Wpa Supplicant 0.3.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.9
	W1.fi Wpa Supplicant 0.3.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.10
	W1.fi Wpa Supplicant 0.3.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.11
	W1.fi Wpa Supplicant 0.4.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.7
	W1.fi Wpa Supplicant 0.4.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.8
	W1.fi Wpa Supplicant 0.4.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.9
	W1.fi Wpa Supplicant 0.4.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.10
	W1.fi Wpa Supplicant 0.4.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.11
	W1.fi Wpa Supplicant 0.5.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.7
	W1.fi Wpa Supplicant 0.5.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.8
	W1.fi Wpa Supplicant 0.5.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.9
	W1.fi Wpa Supplicant 0.5.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.10
	W1.fi Wpa Supplicant 0.5.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.11
	W1.fi Wpa Supplicant 0.6.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.8
	W1.fi Wpa Supplicant 0.6.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.9
	W1.fi Wpa Supplicant 0.6.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.10
	W1.fi Wpa Supplicant 0.7.3	cpe:2.3:a:w1.fi:wpa_supplicant:0.7.3
	W1.fi Wpa Supplicant 1.0	cpe:2.3:a:w1.fi:wpa_supplicant:1.0
	W1.fi Wpa Supplicant 1.1	cpe:2.3:a:w1.fi:wpa_supplicant:1.1
	W1.fi Wpa Supplicant 2.0	cpe:2.3:a:w1.fi:wpa_supplicant:2.0
	W1.fi Wpa Supplicant 2.1	cpe:2.3:a:w1.fi:wpa_supplicant:2.1
	W1.fi Wpa Supplicant 2.2	cpe:2.3:a:w1.fi:wpa_supplicant:2.2
	W1.fi Wpa Supplicant 2.3	cpe:2.3:a:w1.fi:wpa_supplicant:2.3
	W1.fi Wpa Supplicant 2.4	cpe:2.3:a:w1.fi:wpa_supplicant:2.4
	W1.fi Wpa Supplicant 2.5	cpe:2.3:a:w1.fi:wpa_supplicant:2.5
	W1.fi Wpa Supplicant 2.6	cpe:2.3:a:w1.fi:wpa_supplicant:2.6

Configuration #3

		CPE23	From	Up To
	Suse Linux Enterprise Desktop 12 SP2	cpe:2.3:o:suse:linux_enterprise_desktop:12:sp2
	Suse Linux Enterprise Desktop 12 SP3	cpe:2.3:o:suse:linux_enterprise_desktop:12:sp3
	Suse Linux Enterprise Point Of Sale 11 SP3	cpe:2.3:o:suse:linux_enterprise_point_of_sale:11:sp3
	Suse Linux Enterprise Server 11 SP3 for Ltss	cpe:2.3:o:suse:linux_enterprise_server:11:sp3:::*:ltss
	Suse Linux Enterprise Server 11 SP4	cpe:2.3:o:suse:linux_enterprise_server:11:sp4
	Suse Linux Enterprise Server 12	cpe:2.3:o:suse:linux_enterprise_server:12:::*:ltss
	Suse Openstack Cloud 6	cpe:2.3:o:suse:openstack_cloud:6

Weaknesses

Alias

Related CVEs

Affected Products

Canonical

Debian

Freebsd

Opensuse