CVE-2019-15126

EPSS 7.7%

An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic, a different vulnerability than CVE-2019-9500, CVE-2019-9501, CVE-2019-9502, and CVE-2019-9503.

Affected products

n/a · n/a

public PoCs found — 5

githubgithub.com/hexway/r00kie-kr00kie★ 224 githubgithub.com/akabe1/kr00ker★ 66 githubgithub.com/0x13enny/kr00k★ 12 exploitdbwww.exploit-db.com/exploits/48233unverified cve_referencepacketstormsecurity.com/files/156809/Broadcom-Wi-Fi-KR00K-Proof-Of-Concept.htmlunverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/156809/Broadcom-Wi-Fi-KR00K-Proof-Of-Concept.html https://cert-portal.siemens.com/productcert/pdf/ssa-712518.pdf https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0001 https://support.apple.com/kb/HT210721 https://support.apple.com/kb/HT210722 https://support.apple.com/kb/HT210788 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200226-wi-fi-info-disclosure https://us-cert.cisa.gov/ics/advisories/icsa-20-224-05 https://www.mist.com/documentation/mist-security-advisory-kr00k-attack-faq/https://www.synology.com/security/advisory/Synology_SA_20_03 http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-003.txt http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-wifi-en