Juniper Networks releases out-of-cycle emergency patch for FragAttack WiFi vulnerability
Juniper Networks has released an out-of-cycle emergency patch that fixes a “FragAttack” WiFi vulnerability in Juniper Networks Mist Access Points (APs).
WiFi
Intel releases security advisories for multiple products
Intel has released security updates to fix vulnerabilities in Intel PROSet/Wireless WiFi, Driver and Support Assistant, and other software products.
Kr00k: Wi-Fi encryption vulnerability impacts billion+ devices
Security researchers have discovered a new vulnerability dubbed Kr00k (or “KrØØk”) that impacts devices with Broadcom and Cypress Wi-Fi chips.
NETGEAR denial-of-service vulnerabilities fixed (CVE-2019-5054, CVE-2019-5055)
Researchers have discovered two denial of service (DoS) vulnerabilities in NETGEAR N300 home wireless routers. NETGEAR has issued firmware updates to address the issues.
Intel security updates for multiple products
Intel has released security and firmware updates that fix vulnerabilities in multiple Intel products.
Cisco patches Critical Vulnerability, warns of known public exploits
Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.
Broadcom WiFi chipset driver vulnerabilities
The CERT Coordination Center (CERT/CC) has released a security advisory describing multiple vulnerabilities that impact Broadcom WiFi chipset drivers. Four vendors have confirmed they are impacted at the time of the latest published advisory on Wednesday.
DragonBlood WPA3 vulnerabilities discovered
The Wi-Fi Alliance® issued a security update confirming the discovery of vulnerabilities in WPA3-Personal by security researchers. The vulnerabilities collectively dubbed “DragonBlood” is based on the underlying Dragonfly handshake used by WPA3.
Xiaomi phone vulnerabilities found in pre-installed software
Check Point security researchers have discovered a vulnerability in security software that comes pre-installed in Xiaomi smartphones.
Germany Publishes New Broadband Router Security Guidelines
The German government Federal Office for Information Security published technical security guidelines for broadband routers commonly used in Small Office and Home Office (SOHO) environments. The new guideline provides recommendations to manufacturers on designing and implementing routing products with “adequate state-of-the -art security features.”