KRACK Security Vulnerability Update

KRACK (Key Reinstallation Attacks) is a security vulnerability that targets a key step in the Wi-Fi authentication protocol to break security encryption. These vulnerabilities could enable a proximate attacker (within Wi-Fi range of both the client device and the access point) to access and tamper with Wi-Fi packets over connections that are protected by WPA/WPA2 encryption.

KRACK may affect computers, mobile phones, and other IoT devices running both Android and Windows operating systems. If your device supports Wi-Fi, it is most likely affected

Reference No.: Vulnerability Release Date:
02-1017-07 10/16/2017

Detailed information about this vulnerability, recommendations, and instructions for remediation 

 



Click the "+" to expand sections

Locate your product below to view release schedule and access updates. If your product is not listed, Contact Technical Support.

+ Android Nougat Mobile Device Updates

Device BSP Date Available  Download

TC51

01.39.02 (full image)

17-Nov-17

GMS | Non-GMS

TC70x

01.39.02 (full image) 17-Nov-17 GMS | Non-GMS

+ Android Marshmallow Mobile Device Updates

Device BSP Date Available  Download

TC51

21.04.01

6-Nov-17

GMS | Non-GMS

TC56

21.04.01

6-Nov-17

GMS | Non-GMS

TC70x

21.04.01

6-Nov-17

GMS | Non-GMS

TC75x

21.04.01

6-Nov-17

GMS | Non-GMS

TC51

15.01.07

13-Nov-17

GMS | Non-GMS

TC56

15.01.07

13-Nov-17

GMS | Non-GMS

TC70x

15.01.07

13-Nov-17

GMS | Non-GMS

TC75x

15.01.07

13-Nov-17

GMS | Non-GMS

ET50

01.08.20

14-Nov-17

GMS | Non-GMS

ET55

01.08.20

14-Nov-17

GMS | Non-GMS

+ Android Lollipop Mobile Device Updates

Device BSP Date Available  Download

WT6000

04.10.03

3-Nov-17

Non-GMS

MC40 Voice

03.07.03

6-Nov-17

Non-GMS

TC70

02.10.02

6-Nov-17

GMS | GMS FIPSNon-GMS | Non-GMS FIPS

TC75

02.10.02

6-Nov-17

GMS | Non-GMS | Non-GMS FIPS

MC40 Voice

02.11.04 13-Nov-17 Non-GMS

TC8000

02.10.02 13-Nov-17 GMS | Non-GMS

ET50

01.08.21

17-Nov-17

GMS | Non-GMS
ET55 01.10.11 17-Nov-17 GMS | Non-GMS
CC5500 2.0.2.7 20-Nov-17 Non-GMS
MC18 01.11.02 20-Nov-17 Non-GMS

+ Android KitKat Mobile Device Updates

Device BSP Date Available  Download

TC70

19.03

3-Nov-17

GMSNon-GMS

MC67

2.19.01

6-Nov-17

Premium | Premium FIPS

TC55

2.68G

10-Nov-17

GMS | Non-GMS

MC18

02.14.0120

20-Nov-17

Non-GMS

MC40

02.13.0701 (070116) 20-Nov-17 Voice | FIPS

MC92 Premium

02.13.1108 20-Nov-17 Non-GMS

TC75

15.06 20-Nov-17 GMSNon-GMS

TC8000

02.00.00 20-Nov-17 Non-GMS

+ Android Jellybean Mobile Device Updates

Device BSP Date Available  Download

TC55

1.79

20-Nov-17

GMS | Non-GMS

MC32

00.57.12

30-Nov-17

Non-GMS

MC40

06.10.16

30-Nov-17

Non-GMS

MC67

06.01.16

30-Nov-17

Non-GMS

CC5500

1.3.0.25 6-Dec-17 Non-GMS

+ Windows CE 5.0/6.0/7.0 Mobile Device Updates

Device BSP Date Available  Download

MC32N0

All

17-Nov-17

Fusion for CE 7.0

MC92N0

All

17-Nov-17

Fusion for CE 7.0

WT41N0

All

17-Nov-17

Fusion for CE 7.0
VC70N0 All 20-Nov-17 Fusion for CE 7.0

MC2180

04.34.0122

20-Nov-17

Fusion for CE 6.0
MC40N0   20-Nov-17 Please ask your Zebra representative
VH10/XT15 12.3.1 20-Nov-17 VH10 CE 6.0 | XT15 CE 6.0
MC18N0 02.57.07 22-Nov-17 CE 7.0
SB1 03.01.45 22-Nov-17 CE 6.0
MC17 05.35.22 29-Nov-17 CE 5.0
MC31 06.37.13 29-Nov-17 CE 6.0
MC91 04.37.13 29-Nov-17 CE 6.0
MK500 1.30.0014 8-Dec-17 CE 5.0
MK3100 01.47.31 8-Dec-17 CE 5.0
MK4000 01.30.0006 8-Dec-17 CE 5.0
MT2090 01.25.36 8-Dec-17 CE 5.0

+ Windows Embedded Handheld (WEHH) 6.1 and 6.5 Mobile Device Updates

Device BSP Date Available  Download

MC67NA

All

17-Nov-17

Fusion WEHH 6.5

MC92N0

All

20-Nov-17

Fusion WEHH 6.5

MC55E0 All 20-Nov-17 Fusion WEHH 6.5
Omni XT15 8.2 20-Nov-17 WEHH 6.5
MC55N0 03.47.12 22-Nov-17 WEHH 6.1
WAP4 - 7825X 4.0 24-Nov-17 WEHH 6.5

MC959B

06.47.12

27-Nov-17

WEHH 6.1

MC31

06.47.20

29-Nov-17

WEHH 6.5

MC55

03.38.04

29-Nov-17

WEHH 6.5

MC55A0

04.47.10

29-Nov-17

WEHH 6.5

MC75

 

29-Nov-17

WEHH 6.5

MC75Ax

04.47.04

29-Nov-17

WEHH 6.5

MC91

04.47.12

29-Nov-17

WEHH 6.5

MC95

06.47.12

29-Nov-17

WEHH 6.5

VC609x

81.38.0010

29-Nov-17

WEHH 6.5

MC45

04.17.0004

30-Nov-17

WEHH 6.5

MC65 05.48.0002 30-Nov-17
WEHH 6.5
ES400 04.47.0002 6-Dec-17 WEHH 6.5

+ Windows 7, Windows 8.1, Windows 10 Mobile Device Updates

Updates for products running Windows 7, Windows 8 and Windows 10 are available from Microsoft. This includes:

  • ET5X (Windows 8.1 and Windows 10)
  • TC70x (Windows 10)
  • VC80 (Windows 7 and Windows 10)

Advisory is CVE-2017-13080. 

+ Desktop Printer Updates

Printer Date Available  Download

ZD420D/ZD420C/ZD420T

1-Nov-17

ZD420

ZD620T

1-Nov-17 ZD620
ZD500 1-Nov-17 ZD500

HC100

TBD  
1-Nov-17

+ Industrial Printer Updates

Printer Date Available  Download

ZT200 Series

1-Nov-17

ZT220 | ZT230

ZT400 Series

1-Nov-17 ZT410 | ZT420
ZT500 Series 1-Nov-17 ZT510
ZT600 Series 1-Nov-17 ZT610 | ZT620
105SLPlus TBD  
110XI4/140Xi4/170Xi4/220Xi4 TBD  

ZM400/ZM600

TBD  
1-Nov-17
ZT610 | ZT620
ZT610 | ZT620
ZT610 | ZT620

+ Mobile Printer Updates

Printer Date Available  Download

iMZ Series

1-Nov-17

iMZ220 | iMZ320

QLN Series

1-Nov-17 QLn220 | QLn320 | QLn420
QLN Healthcare Series 1-Nov-17 QLn220 Healthcare | QLn320 Healthcare
ZQ300 Series 1-Nov-17 ZQ320

ZQ500 Series

1-Nov-17 ZD500 | ZD500R

+ RFID Printers and Print Engine Updates

Printer Date Available  Download
ZD500R RFID Printer 1-Nov-17 ZD500R

ZE500R Print Engine

TBD  

RZ600 RFID Printer

TBD  
R110Xi4 RFID Printer TBD  

RZ400 RFID Printer

TBD  

+ China-Only Printers

Printer Date Available  Download
ZR300 Series 1-Nov-17 ZR338

ZR600 Series

1-Nov-17 ZR628 | ZR638

ZR600 Healthcare Series

1-Nov-17 ZR628 Healthcare | ZR638 Healthcare
ZT200 Series 1-Nov-17 ZT210 | ZT230

Disclaimer: Zebra makes every attempt to release security updates on or about the time that Google releases its respective security bulletin. However, delivery time of security updates may vary depending on the region, product model, and third party software suppliers. Under some circumstances, the OS must be updated to the latest maintenance release prior to installing the security updates. Individual product updates will provide specific guidance.

Unless otherwise noted, there have been no reports of active customer exploitation or abuse from these newly reported issues.



Are you aware of a potential security issue with a Zebra Technologies product?