FortiAP 5.6.1 is no longer vulnerable to the following CVE Reference:
We are also waiting for this updated firmware for a 221B!
The vulnerability indicates it is a WPA2 general vulnerability affecting the reuse of the nonce on one side of the session key exchange so it should affect any WPA2 implementation, does that sound correct?
Yes, it is a general WPA2 vulnerability affecting everything from home routers to top commercial systems. If your FAP 221B is likely managed by a FortiGate, FortiOS needs updated firmware as well as the AP firmware.
Fortinet released a PSIRT around lunch time today on the issue and announced firmware versions pending release. So stay tuned.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.