Vulnerability identifier: #VU25646

Vulnerability risk: Low

CVSSv3.1: 6.2 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:U/RC:C]

CVE-ID: CVE-2019-15126

CWE-ID: CWE-326

Exploitation vector: Local network

Exploits in database: 3

• June 25, 2021
  • Kr00k (Resources for the Kr00k vulnerability (CVE-2019-15126)) [Github]
• June 17, 2021
  • Broadcom Wi-Fi Devices - 'KR00K Information Disclosure [Exploit-DB]
• March 18, 2020
  • r00kie-kr00kie (PoC exploit for the CVE-2019-15126 kr00k vulnerability) [Github]

Impact: Information disclosure

Vulnerable software:
Cisco Connected Grid Routers
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco RV340W Dual WAN Gigabit Wireless-AC VPN Router
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP125 Wireless-AC Dual Band Desktop Access Point with PoE
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP150 Wireless-AC/N Dual Radio Access Point with PoE
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP361 Wireless-AC/N Dual Radio Wall Plate Access Point with PoE
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP571 Wireless-AC/N Premium Dual Radio Access Point with PoE
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP571E Wireless-AC/N Premium Dual Radio Outdoor Access Point
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco WAP581 Wireless-AC Dual Radio Wave 2 Access Point
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco Catalyst 9115 Series Wi-Fi 6 Access Points
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco Catalyst 9120 Series Access Points
Hardware solutions / Routers & switches, VoIP, GSM, etc
RV110W Wireless-N VPN Firewall
Hardware solutions / Routers for home users
RV215W Wireless-N VPN Router
Hardware solutions / Routers for home users
Cisco Small Business RV130 Series VPN Routers
Hardware solutions / Routers for home users
Cisco Wireless IP Phone 8821
Hardware solutions / Office equipment, IP-phones, print servers

Vendor: Cisco Systems, Inc