×
Wireless Connectivity
-
Wireless Connectivity
- Embedded Wi-Fi
- Low Power Wide Area Networks
- Bluetooth
- Embedded Wireless
- Applications
- Design Partners
- 3rd Party Module Partners
- RED Frequently Asked Questions
- Over-the-Air Updates
- Zigbee® Solutions
- Software Vulnerability Response
Kr00k Wi-Fi® Vulnerability
Microchip is aware of a Wi-Fi security vulnerability named Kr00k (CVE-2019-15126), originally published by ESET. The white paper detailing this vulnerability is available at the following link: https://www.welivesecurity.com/wp-content/uploads/2020/02/ESET_Kr00k.pdf.
Microchip takes security issues seriously and has conducted a thorough investigation of this vulnerability for Microchip products.
Kr00k Affected Products
As of March 4, 2020, Microchip has completed its investigation into the “Kr00k” vulnerability and has concluded that none of the Microchip devices in the table below are vulnerable to CVE-2019-15126.
| Device | Vulnerability | Resolution |
|---|---|---|
| ATWINC15x0 | CVE-2019-15126 | Not affected |
| ATWINC3400 | CVE-2019-15126 | Not affected |
| ATWILC1000 | CVE-2019-15126 | Not affected |
| ATWILC3000 | CVE-2019-15126 | Not affected |
| ATSAMW25 | CVE-2019-15126 | Not affected |