Skip to main content

Vmb3500 Firmware

2 CVEs product

Monthly

CVE-2019-3950 CRITICAL Act Now

Arlo Basestation firmware 1.12.0.1_27940 and prior contain a hardcoded username and password combination that allows root access to the device when an onboard serial interface is connected to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Vmb3010 Firmware Vmb4000 Firmware Vmb3500 Firmware Vmb4500 Firmware +1
NVD
CVSS 3.0
9.8
EPSS
1.7%
CVE-2019-3949 CRITICAL Act Now

Arlo Basestation firmware 1.12.0.1_27940 and prior firmware contain a networking misconfiguration that allows access to restricted network interfaces. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Vmb3010 Firmware Vmb4000 Firmware Vmb3500 Firmware Vmb4500 Firmware +1
NVD
CVSS 3.0
9.8
EPSS
1.2%
EPSS 2% CVSS 9.8
CRITICAL Act Now

Arlo Basestation firmware 1.12.0.1_27940 and prior contain a hardcoded username and password combination that allows root access to the device when an onboard serial interface is connected to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Vmb3010 Firmware Vmb4000 Firmware +3
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Arlo Basestation firmware 1.12.0.1_27940 and prior firmware contain a networking misconfiguration that allows access to restricted network interfaces. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Vmb3010 Firmware Vmb4000 Firmware +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy