Microchip logo
  • All
  • Products
  • Documents
  • Applications Notes

Kr00k Wi-Fi® Vulnerability

Microchip is aware of a Wi-Fi security vulnerability named Kr00k (CVE-2019-15126), originally published by ESET. The white paper detailing this vulnerability is available at the following link: https://www.welivesecurity.com/wp-content/uploads/2020/02/ESET_Kr00k.pdf.

Microchip takes security issues seriously and has conducted a thorough investigation of this vulnerability for Microchip products.

Kr00k Affected Products

As of March 4, 2020, Microchip has completed its investigation into the “Kr00k” vulnerability and has concluded that none of the Microchip devices in the table below are vulnerable to CVE-2019-15126.

DeviceVulnerabilityResolution
ATWINC15x0 CVE-2019-15126 Not affected
ATWINC3400 CVE-2019-15126 Not affected
ATWILC1000 CVE-2019-15126 Not affected
ATWILC3000 CVE-2019-15126 Not affected
ATSAMW25 CVE-2019-15126 Not affected