Security Advisory for WPA-2 Vulnerabilities on Some Arlo Cameras, PSV-2017-2837
Associated CVE IDs:
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13084
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088
Associated CERT/CC VU number: VU#228519
Arlo is aware of WPA-2 security vulnerabilities (known as KRACK attacks) that affect some Arlo products that connect to WiFi networks as clients. These vulnerabilities are potentially exploitable under the following conditions:
- Your devices are only vulnerable if an attacker is in physical proximity to and within wireless range of your network.
- Arlo cameras are affected during a WPA-2 handshake that is initiated only when connecting or reconnecting to a router.
If these vulnerabilities are exploited, an attacker could potentially perform the following type of attack, among others:
- Eavesdrop on communication between the affected product and the router to which it connects.
Arlo camera feed traffic is encrypted and remains protected.
These WPA-2 vulnerabilities affect the following products:
- ABC1000
- VMC3040
- VMC3040S
For all Arlo products, firmware updates are sent to your devices automatically. You do not need to update your firmware manually.
Arlo will update this advisory when more information is available.
Disclaimer
This document is provided on an "as is" basis and does not imply any kind of guarantee or warranty, including the warranties of merchantability or fitness for a particular use. Your use of the information in the document or materials linked from the document is at your own risk. Arlo reserves the right to change or update this document at any time. Arlo expects to update this document as new information becomes available.
Acknowledgements
Mathy Vanhoef (https://www.krackattacks.com/)
Common Vulnerability Scoring System
CVSS v3 Rating: Medium
CVSS v3 Score: 6.8
CVSS v3 Vector: AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Contact
We appreciate and value having security concerns brought to our attention. Arlo constantly monitors for both known and unknown threats. Being proactive rather than reactive to emerging security issues is fundamental for product support at Arlo.
To report a security vulnerability, visit https://www.arlo.com/en-us/about/security/default.aspx.
If you are an Arlo customer with a security-related support concern, you can contact Arlo customer support at security@arlo.com.
Revision History
2018-06-22:
- Published as a new, Arlo-only advisory separate from the NETGEAR WPA-2 security advisory
- Removed all NETGEAR-only vulnerability information
- Replaced the legal disclaimer text