Welcome to TP-LINK Tech Support Forum
+ Reply to Thread
Results 1 to 10 of 10
  1. #1
    Junior Member JiiVeeTee is on a distinguished road
    Join Date
    Dec 2017
    Posts
    2

    Angry RE200 v1 has not received WPA KRACK vulnerability upgrade

    Model :

    Hardware Version :

    Firmware Version :

    ISP : [/COLOR]

    The firmware for RE200 v1 is dated 2017-07-17, which is earlier than the KRACK WPA2 vulnerability date. I assume the device is then vulnerable.

    Warranty of the device is still valid - should I return the device to shop as TP-LINK is not providing security upgrade to it?


    In announcement, only RE200 v2 version is referred:
    http://forum.tp-link.com/showthread....-WPA2-protocol

  2. #2
    It is a miracle. I found update on this site https://www.tp-link.com/il/download/....html#Firmware

  3. #3
    Thanks didot.

    Any reason why the new firmware for the RE200 shows for some countries and it does not show for others?

    For example, the page for France shows the firmware version RE200(EU)_V1_171206:
    https://www.tp-link.com/fr/download/....html#Firmware
    https://static.tp-link.com/2018/2018..._V1_171206.zip

    While the page for the UK only shows the earlier version, before the KRACK patch (also this version is listed as obsolete on the French page):
    https://www.tp-link.com/uk/download/....html#Firmware
    https://static.tp-link.com/RE200(EU)_V1_170707.zip

    Both the French and the UK site have the V1 EU version, but the UK does not show the latest.

    ANY REASON WHY THE UK HAS BEEN LEFT BEHIND WITH AN UN-PATCHED FIRMWARE?

  4. #4
    those are good questions. I have no answers.

    I also do not know why the menu to choose time zone has been taken away. Now the time is wrong. It is small bug but stupid and unnecessary

  5. #5
    To casaschi -- tplink is handling that. That firmware is suitable for UK users as well.
    To didot --You can go to Advanced>System tools>Time settings to correct the time.

  6. #6
    Thanks uutommi. The UK page has been fixed now and shows the latest firmware with the KRACK patch!

    Your suggestion about fixing the timezone however does not seem to apply to the latest V1 firmware. I can't see an "advanced" menu item and the "system tools" section does not have a "time settings" option. Are you by any chance referring to the V2 style interface instead?

    EDIT: looking around a bit with an older version of the interface from an emulator, it seems that older firmware versions had a "choose region" step in the quick setup wizard that is not there with the latest firmware. In that "choose region" step the user could set the device location and the timezone was set accordingly. There's no way to change region afterwards other than going through the setup wizard again.
    Besides using the wrong timezone, without being able to select the operating region I wonder how the device is supposed to enforce local region-based restriction and regulations (unless built-in into a firmware build specifically for each region).
    Last edited by casaschi; 03-14-2018 at 10:13.

  7. #7

    Thumbs up

    Quote Originally Posted by uutommi View Post
    To casaschi -- tplink is handling that. That firmware is suitable for UK users as well.
    To didot --You can go to Advanced>System tools>Time settings to correct the time.
    To TPLINK: Removing time zone choice is stupid and unnecessary. There are more than one time-zone in EU. Also, you sell EU version hardware in other parts of the world, eg. IL.

  8. #8
    sorry I may have looked at the wrong interface. there is time setting for v2, not v1
    but there is no function required correct time to take effect on the v1.
    don't worry about the region. EU version is made to compliant with CE standard. It's OK to use it in the country where CE is recognized.

  9. #9
    Junior Member Steve7001 is on a distinguished road
    Join Date
    Mar 2018
    Posts
    1
    For US/Canada V1 is still 2017-07-17... which as JiiVeeTee noted is before the KRACK vulnerability was published (and release notes don't include anything on KRACK).

    Does anyone know if there will be a firmware fix? Or should we return the product for a newer one? (still under warranty).

    Quote Originally Posted by JiiVeeTee View Post
    Model :

    Hardware Version :

    Firmware Version :

    ISP : [/COLOR]

    The firmware for RE200 v1 is dated 2017-07-17, which is earlier than the KRACK WPA2 vulnerability date. I assume the device is then vulnerable.

    Warranty of the device is still valid - should I return the device to shop as TP-LINK is not providing security upgrade to it?


    In announcement, only RE200 v2 version is referred:
    http://forum.tp-link.com/showthread....-WPA2-protocol

  10. #10
    you may contact tp-link directly . share us any new update from them.
    Quote Originally Posted by Steve7001 View Post
    For US/Canada V1 is still 2017-07-17... which as JiiVeeTee noted is before the KRACK vulnerability was published (and release notes don't include anything on KRACK).

    Does anyone know if there will be a firmware fix? Or should we return the product for a newer one? (still under warranty).


 

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Copyright 1996-2018 TP-LINK Technologies Co., Ltd. All rights reserved.