Dragonblood vulnerabilities disclosed in WiFi WPA3 standard Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-19-107 Final 1 1 2020-01-03T00:00:00 Current version 2020-01-03T00:00:00 2020-01-03T00:00:00 Multiple vulnerabilities, referred to as Dragonblood, exist in WiFi WPA3 standard implementation .Dragonblood vulnerabilities impacting WiFi WPA3 standard implementations can cause password leak, denial of service or authorization bypass. They consist it:CVE-2019-9494: SAE cache attack against ECC groups (SAE side-channel attacks)CVE-2019-9495: EAP-PWD cache attack against ECC groups (EAP-PWD side-channel attack)CVE-2019-9496: SAE confirm missing state validationCVE-2019-9497: EAP-PWD reflection attack (EAP-PWD missing commit validation)CVE-2019-9498: EAP-PWD server missing commit validation for scalar/elementCVE-2019-9499: EAP-PWD peer missing commit validation for scalar/element Information disclosure FortiOS and FortiAP-S/W2 are only impacted by:CVE-2019-9494CVE-2019-9495CVE-2019-9496Meru AP and Meru Controller are only impacted by:CVE-2019-9496 FortiOS:CVE-2019-9494 upgrade to FortiOS 6.2.2CVE-2019-9495 upgrade to FortiOS 6.2.2CVE-2019-9496 upgrade to FortiOS 6.2.3FortiAP-S/W2:CVE-2019-9494 upgrade to FortiAP-S/W2 6.2.1CVE-2019-9495 upgrade to FortiAP-S/W2 6.2.1CVE-2019-9496 upgrade to FortiAP-S/W2 6.2.2Meru AP:CVE-2019-9496 upgrade to Meru AP 8.5.1Meru Controller:CVE-2019-9496 upgrade to Meru Controller 8.5.1 https://fortiguard.fortinet.com/psirt/FG-IR-19-107 Dragonblood vulnerabilities disclosed in WiFi WPA3 standard https://kb.cert.org/vuls/id/871675/ https://kb.cert.org/vuls/id/871675/ CVE-2019-9494 CVE-2019-9496 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-19-107 Dragonblood vulnerabilities disclosed in WiFi WPA3 standard Reference> https://kb.cert.org/vuls/id/871675/ https://kb.cert.org/vuls/id/871675/