SSA-901333 (Last Update: 2018-01-24): KRACK Attacks Vulnerabilities in Industrial Products

Published

2018-01-24 00:00:00

Summary

Multiple vulnerabilities affecting WPA/WPA2 implementations were identified by a researcher and publicly disclosed under the term "Key Reinstallation Attacks" (KRACK). These vulnerabilities could potentially allow an attacker within the radio range of the wireless network to decrypt, replay or inject forged network packets into the wireless communication.

Several Siemens Industrial products use WPA/WPA2 and are therefore affected by some of the vulnerabilities.