CVE-2017-13084 (KRACK)

CVSS v3.0 6.8 (Medium)

CVSS v2.0 5.4 (Medium)

EPSS 0.17 % (54^th)

Affected Products 12

Advisories 5

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

Weaknesses

CWE-323: Reusing a Nonce, Key Pair in Encryption
CWE-330: Use of Insufficiently Random Values

Alias

KRACK

Related CVEs

CVE Status: PUBLISHED
CNA: CERT/CC
Published Date: 2017-10-17 13:29:00
(6 years ago)
Updated Date: 2019-10-03 00:03:26
(5 years ago)

Affected Products

Redhat

Suse

W1.fi

Configuration #1

		CPE23	From	Up To
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:lts
	Canonical Ubuntu Linux 16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04:::*:lts
	Canonical Ubuntu Linux 17.04	cpe:2.3:o:canonical:ubuntu_linux:17.04
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0
	Freebsd	cpe:2.3:o:freebsd:freebsd
	Freebsd 10	cpe:2.3:o:freebsd:freebsd:10
	Freebsd 10.4	cpe:2.3:o:freebsd:freebsd:10.4
	Freebsd 11	cpe:2.3:o:freebsd:freebsd:11
	Freebsd 11.1	cpe:2.3:o:freebsd:freebsd:11.1
	Opensuse Leap 42.2	cpe:2.3:o:opensuse:leap:42.2
	Opensuse Leap 42.3	cpe:2.3:o:opensuse:leap:42.3
	Redhat Enterprise Linux Desktop 7	cpe:2.3:o:redhat:enterprise_linux_desktop:7
	Redhat Enterprise Linux Server 7	cpe:2.3:o:redhat:enterprise_linux_server:7

Configuration #2

		CPE23	From	Up To
	W1.fi Hostapd 0.2.4	cpe:2.3:a:w1.fi:hostapd:0.2.4
	W1.fi Hostapd 0.2.5	cpe:2.3:a:w1.fi:hostapd:0.2.5
	W1.fi Hostapd 0.2.6	cpe:2.3:a:w1.fi:hostapd:0.2.6
	W1.fi Hostapd 0.2.8	cpe:2.3:a:w1.fi:hostapd:0.2.8
	W1.fi Hostapd 0.3.7	cpe:2.3:a:w1.fi:hostapd:0.3.7
	W1.fi Hostapd 0.3.9	cpe:2.3:a:w1.fi:hostapd:0.3.9
	W1.fi Hostapd 0.3.10	cpe:2.3:a:w1.fi:hostapd:0.3.10
	W1.fi Hostapd 0.3.11	cpe:2.3:a:w1.fi:hostapd:0.3.11
	W1.fi Hostapd 0.4.7	cpe:2.3:a:w1.fi:hostapd:0.4.7
	W1.fi Hostapd 0.4.8	cpe:2.3:a:w1.fi:hostapd:0.4.8
	W1.fi Hostapd 0.4.9	cpe:2.3:a:w1.fi:hostapd:0.4.9
	W1.fi Hostapd 0.4.10	cpe:2.3:a:w1.fi:hostapd:0.4.10
	W1.fi Hostapd 0.4.11	cpe:2.3:a:w1.fi:hostapd:0.4.11
	W1.fi Hostapd 0.5.7	cpe:2.3:a:w1.fi:hostapd:0.5.7
	W1.fi Hostapd 0.5.8	cpe:2.3:a:w1.fi:hostapd:0.5.8
	W1.fi Hostapd 0.5.9	cpe:2.3:a:w1.fi:hostapd:0.5.9
	W1.fi Hostapd 0.5.10	cpe:2.3:a:w1.fi:hostapd:0.5.10
	W1.fi Hostapd 0.5.11	cpe:2.3:a:w1.fi:hostapd:0.5.11
	W1.fi Hostapd 0.6.8	cpe:2.3:a:w1.fi:hostapd:0.6.8
	W1.fi Hostapd 0.6.9	cpe:2.3:a:w1.fi:hostapd:0.6.9
	W1.fi Hostapd 0.6.10	cpe:2.3:a:w1.fi:hostapd:0.6.10
	W1.fi Hostapd 0.7.3	cpe:2.3:a:w1.fi:hostapd:0.7.3
	W1.fi Hostapd 1.0	cpe:2.3:a:w1.fi:hostapd:1.0
	W1.fi Hostapd 1.1	cpe:2.3:a:w1.fi:hostapd:1.1
	W1.fi Hostapd 2.0	cpe:2.3:a:w1.fi:hostapd:2.0
	W1.fi Hostapd 2.1	cpe:2.3:a:w1.fi:hostapd:2.1
	W1.fi Hostapd 2.2	cpe:2.3:a:w1.fi:hostapd:2.2
	W1.fi Hostapd 2.3	cpe:2.3:a:w1.fi:hostapd:2.3
	W1.fi Hostapd 2.4	cpe:2.3:a:w1.fi:hostapd:2.4
	W1.fi Hostapd 2.5	cpe:2.3:a:w1.fi:hostapd:2.5
	W1.fi Hostapd 2.6	cpe:2.3:a:w1.fi:hostapd:2.6
	W1.fi Wpa Supplicant 0.2.4	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.4
	W1.fi Wpa Supplicant 0.2.5	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.5
	W1.fi Wpa Supplicant 0.2.6	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.6
	W1.fi Wpa Supplicant 0.2.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.7
	W1.fi Wpa Supplicant 0.2.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.2.8
	W1.fi Wpa Supplicant 0.3.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.7
	W1.fi Wpa Supplicant 0.3.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.8
	W1.fi Wpa Supplicant 0.3.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.9
	W1.fi Wpa Supplicant 0.3.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.10
	W1.fi Wpa Supplicant 0.3.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.3.11
	W1.fi Wpa Supplicant 0.4.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.7
	W1.fi Wpa Supplicant 0.4.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.8
	W1.fi Wpa Supplicant 0.4.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.9
	W1.fi Wpa Supplicant 0.4.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.10
	W1.fi Wpa Supplicant 0.4.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.4.11
	W1.fi Wpa Supplicant 0.5.7	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.7
	W1.fi Wpa Supplicant 0.5.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.8
	W1.fi Wpa Supplicant 0.5.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.9
	W1.fi Wpa Supplicant 0.5.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.10
	W1.fi Wpa Supplicant 0.5.11	cpe:2.3:a:w1.fi:wpa_supplicant:0.5.11
	W1.fi Wpa Supplicant 0.6.8	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.8
	W1.fi Wpa Supplicant 0.6.9	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.9
	W1.fi Wpa Supplicant 0.6.10	cpe:2.3:a:w1.fi:wpa_supplicant:0.6.10
	W1.fi Wpa Supplicant 0.7.3	cpe:2.3:a:w1.fi:wpa_supplicant:0.7.3
	W1.fi Wpa Supplicant 1.0	cpe:2.3:a:w1.fi:wpa_supplicant:1.0
	W1.fi Wpa Supplicant 1.1	cpe:2.3:a:w1.fi:wpa_supplicant:1.1
	W1.fi Wpa Supplicant 2.0	cpe:2.3:a:w1.fi:wpa_supplicant:2.0
	W1.fi Wpa Supplicant 2.1	cpe:2.3:a:w1.fi:wpa_supplicant:2.1
	W1.fi Wpa Supplicant 2.2	cpe:2.3:a:w1.fi:wpa_supplicant:2.2
	W1.fi Wpa Supplicant 2.3	cpe:2.3:a:w1.fi:wpa_supplicant:2.3
	W1.fi Wpa Supplicant 2.4	cpe:2.3:a:w1.fi:wpa_supplicant:2.4
	W1.fi Wpa Supplicant 2.5	cpe:2.3:a:w1.fi:wpa_supplicant:2.5
	W1.fi Wpa Supplicant 2.6	cpe:2.3:a:w1.fi:wpa_supplicant:2.6

Configuration #3

		CPE23	From	Up To
	Suse Linux Enterprise Desktop 12 SP2	cpe:2.3:o:suse:linux_enterprise_desktop:12:sp2
	Suse Linux Enterprise Desktop 12 SP3	cpe:2.3:o:suse:linux_enterprise_desktop:12:sp3
	Suse Linux Enterprise Point Of Sale 11 SP3	cpe:2.3:o:suse:linux_enterprise_point_of_sale:11:sp3
	Suse Linux Enterprise Server 11 SP3 for Ltss	cpe:2.3:o:suse:linux_enterprise_server:11:sp3:::*:ltss
	Suse Linux Enterprise Server 11 SP4	cpe:2.3:o:suse:linux_enterprise_server:11:sp4
	Suse Linux Enterprise Server 12	cpe:2.3:o:suse:linux_enterprise_server:12:::*:ltss
	Suse Openstack Cloud 6	cpe:2.3:o:suse:openstack_cloud:6

Weaknesses

Alias

Related CVEs

Affected Products

Canonical

Debian

Freebsd

Opensuse