ArubaOS WPA2 Key Reinstallation Vulnerabilities (KRACK)
High Nessus Plugin ID 103855
SynopsisThe version of ArubaOS is affected by a MitM vulnerability.
DescriptionThe version of ArubaOS on the remote device is affected by multiple vulnerabilities related to the KRACK attacks. This may allow an attacker to decrypt, replay, and forge some frames on a WPA2 encrypted network.
Note: ArbuaOS devices are only vulnerable to CVE-2017-13077, CVE-2017-13078,CVE-2017-13079, CVE-2017-13080, and CVE-2017-13081 while operating as a Wi-Fi supplicant in Mesh mode.
SolutionUpgrade to 188.8.131.52 / 184.108.40.206 / 220.127.116.11 / 18.104.22.168 / 22.214.171.124 / 126.96.36.199 or later.