Vulnerabilities > Arlo
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-29 | CVE-2021-31505 | Use of Hard-coded Credentials vulnerability in Arlo Q Plus Firmware 1.9.0.3278 This vulnerability allows attackers with physical access to escalate privileges on affected installations of Arlo Q Plus 1.9.0.3_278. | 7.2 |
| 2019-07-09 | CVE-2019-3950 | Use of Hard-coded Credentials vulnerability in Arlo products Arlo Basestation firmware 1.12.0.1_27940 and prior contain a hardcoded username and password combination that allows root access to the device when an onboard serial interface is connected to. | 10.0 |
| 2019-07-09 | CVE-2019-3949 | Configuration vulnerability in Arlo products Arlo Basestation firmware 1.12.0.1_27940 and prior firmware contain a networking misconfiguration that allows access to restricted network interfaces. | 7.5 |