Toshiba_Canvio_AeroMobile_Wireless_SSD_WPA2_vulnerability.pdf для Toshiba CANVIO AEROMOBILE
NOTICE
C
ANVIO
A
ERO
M
OBILE
W
IRELESS
SSD
17
O
CTOBER
2017
V
ULNERABILITY FOUND RELATED TO THE GENERATION AND MANAGEMENT OF
WPA2
KEY
Toshiba Memory Corporation
To: Valued Customers,
Toshiba Memory Corporation is informing our valued customers of a potential WPA2 wireless LAN
protocol vulnerability with the Toshiba Canvio AeroMobile Wireless SSD product has been identified.
This vulnerability is related to the generation and management of key information which is utilized for
encrypting data. With this vulnerability there exists a possibility that the data transmitted between the
Canvio AeroMobile Wireless SSD and wireless LAN devices can be compromised.
protocol vulnerability with the Toshiba Canvio AeroMobile Wireless SSD product has been identified.
This vulnerability is related to the generation and management of key information which is utilized for
encrypting data. With this vulnerability there exists a possibility that the data transmitted between the
Canvio AeroMobile Wireless SSD and wireless LAN devices can be compromised.
The WPA2 is used widely for wireless LAN. We have discovered that this behavior exists when the
Canvio AeroMobile is used in “Station” mode. Therefore, please do not connect the Canvio AeroMobile
Wireless SSD using the wireless LAN “Station” mode until the firmware has been updated (mentioned
below). Even if “Station” mode is disabled on the Canvio AeroMobile Wireless SSD*, the device
connected to it could exhibit this vulnerability and transmitted data could still be compromised if such
connected device is in “Station” mode.
Canvio AeroMobile is used in “Station” mode. Therefore, please do not connect the Canvio AeroMobile
Wireless SSD using the wireless LAN “Station” mode until the firmware has been updated (mentioned
below). Even if “Station” mode is disabled on the Canvio AeroMobile Wireless SSD*, the device
connected to it could exhibit this vulnerability and transmitted data could still be compromised if such
connected device is in “Station” mode.
To correct this issue, we are now in the process of addressing this vulnerability via a firmware update
which is expected to be released on or before November 30, 2017. Please update the firmware when
it is released.
which is expected to be released on or before November 30, 2017. Please update the firmware when
it is released.
We also ask customers to check this vulnerability of the Devices prior to connecting to the Canvio
AeroMobile Wireless SSD. About the vulnerability of the Devices, please contact to Devices’ customer
and/or technical support. If you have any questions about this vulnerability of Canvio AeroMobile
Wireless SSD, please contact your local technical support representative and we will be happy to
support you. For information regarding how to reach your local technical support representative, please
visit www.toshibastorage.com.”
AeroMobile Wireless SSD. About the vulnerability of the Devices, please contact to Devices’ customer
and/or technical support. If you have any questions about this vulnerability of Canvio AeroMobile
Wireless SSD, please contact your local technical support representative and we will be happy to
support you. For information regarding how to reach your local technical support representative, please
visit www.toshibastorage.com.”