SnapAV is aware of the coordinated disclosure of a series of vulnerabilities (dubbed “FragAttacks”), related to the functionality of Wi-Fi devices, released by the Industry Consortium for Advancement of Security on the Internet (ICASI) on May 11, 2021. These vulnerabilities are not unique to SnapAV products and appear to impact all Wi-Fi devices operating on the IEEE 802.11 standard. 

The vulnerabilities were identified in the IEEE 802.11 implementation of disaggregation and defragmentation.  

SnapAV is working to release patches for vulnerable Wi-Fi products. The complete list will be communicated when the timelines are available. 

It is important to note that an attacker must be physically within range of the Wi-Fi network of the vulnerable device to exploit these weaknesses. According to the Wi-Fi Alliance®, there is no evidence of the vulnerabilities being used against Wi-Fi users maliciously.  

Because of this information, SnapAV believes that while it is unlikely that any customers have been affected to date, it is important that dealers apply the patches when available to protect customers.