GCVE - cpe:2.3:h:arlo:vmb4000:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:arlo:vmb4000:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Arlo (`8b28ab23-5f71-5d50-9bc5-1bb77c2db3fa`)
Product	Vmb4000 (`d2b82cd3-427f-541b-8678-dfc94bb2572b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-3950`	not_vulnerable	2026-06-03 14:40:27.989655	Details available Arlo Basestation firmware 1.12.0.1_27940 and prior contain a hardcoded username and password combination that allows root access to the device when an onboard serial interface is connected to. Published: 2019-07-09T17:18:56.000Z Updated: 2024-08-04T19:26:27.578Z Open on db.gcve.eu Reference links https://kb.arlo.com/000062274/Security-Advisory-for-Networking-Misconfiguration-and-Insufficient-UART-Protection-Mechanisms	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-3949`	not_vulnerable	2026-06-03 14:40:27.984845	Details available Arlo Basestation firmware 1.12.0.1_27940 and prior firmware contain a networking misconfiguration that allows access to restricted network interfaces. This could allow an attacker to upload or download arbitrary files and possibly execute malicious code on the device. Published: 2019-07-09T17:18:31.000Z Updated: 2024-08-04T19:26:27.676Z Open on db.gcve.eu Reference links https://kb.arlo.com/000062274/Security-Advisory-for-Networking-Misconfiguration-and-Insufficient-UART-Protection-Mechanisms	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.