Zyxel security advisory for the key management vulnerabilities of WPA2 protocol
is aware of the recently found key management vulnerabilities of the WiFi Protected
Access II (WPA2) security protocol, as identified in US-CERT vulnerability note VU#228519, with the vulnerability IDs listed in table 1.
What are the vulnerabilities?
These vulnerabilities affect wireless products that connect to WiFi networks in different ways, depending on the role of products as WiFi clients or servers, as described in table 1 below.
Type of attack
802.11r Fast-BSS Transition (FT)
It is important to note that an attacker has to be physically nearby and is within the wireless range to exploit these weaknesses.
Please see: https://www.krackattacks.com/#details for more technical information.
We have conducted a thorough investigation and ZyWALL USG/UAG/SBG series are immune from above CVE vulnerabilities.
For more information and technical details regarding the vulnerabilities please see below references:
1. US-CERT VU note: https://www.kb.cert.org/vuls/id/228519/
2. Disclosure by by Mathy Vanhoef of imec-DistriNet of KU Leuven: https://www.krackattacks.com/