Cisco is processing a set of patches to address a newly discovered vulnerability that can be exploited to block Wi-Fi traffic. The vulnerability, referred to as CVE-2019-15126, is called "Kr00k" and was revealed at the RSA 2020 Security Conference in San Francisco by ESET researchers on Wednesday.
Kr00k is a vulnerability that allows hackers to force Wi-Fi systems into catastrophic situations, affecting the ability to decrypt data used to secure data packets.
All Wi-Fi devices running on Broadcom or Cypress Wi-Fi chips are affected. ESET has reported that the number affected is around one billion and is even referred to as a "conservative estimate".
The patches are implemented by vendors using these chips and it is also possible to mitigate attacks using the latest WPA3 protocol.
Cisco is currently examining how widespread the vulnerability of Kr00k is in its products, as a user of a Broadcom chip.
The giant company said Thursday that "Cisco is investigating the series products its to determine which products may be affected by this vulnerability ”, but the preliminary ones investigations have shown that "multiple" devices are affected.
Cisco is currently investigating the "sensitivity" of Cisco DX70, DX80 and DX650 IP phones Android firmware, as well as the Cisco IP Phone 8861.
The company has not yet developed the patches to resolve it security flaw but we seem to be expecting them soon.