让您全面了解并上手亿速云产品
常见入门级使用教程
对外 API 开发文档中心
您历史提交的工单
您的每一条意见,我们都严谨处理
您的每一条建议,我们都认真对待
CNNVD-ID编号 | CNNVD-202002-123 | CVE编号 | CVE-2019-15126 |
发布时间 | 2020-02-05 | 更新时间 | 2020-12-10 |
漏洞类型 | 加密问题 | 漏洞来源 | ESET security researcher Milo? ?ermák,Maurizio Siddu,Anonymous |
危险等级 | 低危 | 威胁类型 | 远程或本地 |
厂商 | N/A |
Broadcom WiFi Chipset Drivers是美国博通(Broadcom)公司的一款无线网络芯片组驱动程序。
Broadcom Wi-Fi client devices中存在加密问题漏洞。攻击者可借助畸形的数据流量包利用该漏洞造成内部错误(与状态转换相关),导致2层Wi-Fi加密不当,进而导致随机性的信息泄漏。
目前厂商已发布升级了Broadcom WiFi Chipset Drivers 加密问题漏洞的补丁,Broadcom WiFi Chipset Drivers 加密问题漏洞的补丁获取链接:
https://support.apple.com/en-us/HT210721
https://support.apple.com/en-us/HT210722
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200226-wi-fi-info-disclosure
https://www.huawei.com/cn/psirt/security-notices/huawei-sn-20200228-01-kr00k-cn
来源:CONFIRM
来源:CONFIRM
链接:http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-003.txt
来源:CONFIRM
来源:CONFIRM
来源:MISC
来源:CONFIRM
链接:https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-wifi-en
来源:CONFIRM
链接:https://www.mist.com/documentation/mist-security-advisory-kr00k-attack-faq/
来源:CONFIRM
链接:https://www.huawei.com/en/psirt/security-notices/huawei-sn-20200228-01-kr00k-en
来源:CONFIRM
链接:https://www.synology.com/security/advisory/Synology_SA_20_03
来源:CONFIRM
链接:https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0001
来源:CISCO
来源:MISC
链接:https://packetstormsecurity.com/files/156809/Broadcom-Wi-Fi-KR00K-Proof-Of-Concept.html
来源:CONFIRM
链接:https://cert-portal.siemens.com/productcert/pdf/ssa-712518.pdf
来源:www.auscert.org.au
来源:nvd.nist.gov
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/156809/Broadcom-Wi-Fi-KR00K-Proof-Of-Concept.html
来源:www.auscert.org.au
来源:www.huawei.com
链接:https://www.huawei.com/cn/psirt/security-notices/huawei-sn-20200228-01-kr00k-cn
来源:vigilance.fr
来源:www.auscert.org.au
来源:cxsecurity.com
来源:tools.cisco.com
来源:www.exploit-db.com
来源:www.huawei.com
链接:https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200527-01-wifi-cn
来源:us-cert.cisa.gov
来源:www.auscert.org.au
暂无