What is the severity of CVE-2016-10115?

CVE-2016-10115 is considered a high-severity vulnerability due to the use of default credentials.

How do I fix CVE-2016-10115?

To fix CVE-2016-10115, change the default password from '12345678' to a strong, unique password after a factory reset.

What risks does CVE-2016-10115 pose?

CVE-2016-10115 poses a risk of unauthorized access to the device, allowing remote attackers to control the device.

Is there a patch available for CVE-2016-10115?

Yes, updating the firmware of the affected NETGEAR devices to the latest version addresses the vulnerability.

Vulnerability/
CVE-2016-10115

critical

CWE

798

4/1/2017

6/8/2024

CVE-2016-10115

Q: What are the affected devices for CVE-2016-10115?

The affected devices include NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo Q devices with firmware 1.8.0_5551 and earlier, and Arlo Q Plus devices with firmware 1.8.1_6094 and earlier.

First published: Wed Jan 04 2017(Updated: )

NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo Q devices with firmware 1.8.0_5551 and earlier, and Arlo Q Plus devices with firmware 1.8.1_6094 and earlier have a default password of 12345678, which makes it easier for remote attackers to obtain access after a factory reset or in a factory configuration.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Netgear Arlo Base Station Firmware	<=1.7.5_6178
Netgear VMB30X0
Netgear Vmk3xx0
Netgear Vms3xx0
Netgear Arlo Q Camera Firmware	<=1.8.0_5551
Netgear VMC3040
Arlo Q Plus Firmware	<=1.8.1_6094
Netgear VMC3040

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What are the affected devices for CVE-2016-10115?
The affected devices include NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo Q devices with firmware 1.8.0_5551 and earlier, and Arlo Q Plus devices with firmware 1.8.1_6094 and earlier.
What is the severity of CVE-2016-10115?
CVE-2016-10115 is considered a high-severity vulnerability due to the use of default credentials.
How do I fix CVE-2016-10115?
To fix CVE-2016-10115, change the default password from '12345678' to a strong, unique password after a factory reset.
What risks does CVE-2016-10115 pose?
CVE-2016-10115 poses a risk of unauthorized access to the device, allowing remote attackers to control the device.
Is there a patch available for CVE-2016-10115?
Yes, updating the firmware of the affected NETGEAR devices to the latest version addresses the vulnerability.

agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/references
agent/last-modified-date
agent/weakness
agent/severity
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/netgear
canonical/netgear arlo base station firmware
version/netgear arlo base station firmware/1.7.5_6178
canonical/netgear vmb30x0
canonical/netgear vmk3xx0
canonical/netgear vms3xx0
canonical/netgear arlo q camera firmware
version/netgear arlo q camera firmware/1.8.0_5551
canonical/netgear vmc3040
canonical/arlo q plus firmware
version/arlo q plus firmware/1.8.1_6094

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.