Alta Aware — 950: Alta camera DoS via download of an arbitrarily sized upgrade file

Release Date

5th of January 2024.

Overview

Due to the lack of file size limits when downloading the Alta camera upgrade image, an arbitrarily sized upgrade file could cause a denial of service to the camera.

Affected Products

• Alta cameras:
  • All Stable upgrade Channel versions before 6.3.4.
  • All Beta upgrade channel versions before 6.3.3.

Unaffected Products

• Alta Aware: all versions.

• Alta cameras:

  • All Stable upgrade channel versions after and including 6.3.4.
  • All Beta upgrade channel versions after and including 6.3.3.

• Alta Cloud: all versions.

Resolution

This issue has been fixed in Alta camera Beta upgrade channel version 6.3.3 and Stable upgrade channel version 6.3.4.

It is strongly recommended that all Alta camera installations running an affected version upgrade to the latest release as soon as possible. Releases are available to download through the Alta Aware User Interface for Alta managed cameras and the Alta camera User Interface for unmanaged Alta cameras.

Vulnerability Information

• CVSSv3 score: 6.8 (Medium)
• CVSSv3 vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Mitigations

There are no known mitigations for this issue.

Work arounds

There are no known work arounds for this issue.

Acknowledgements

Issue found internally by Alta Security.

Disclosure Timeline

• 19/10/2023 Issue found internally by Alta Security
• 25/10/2023 Root cause established
• 26/10/2023 Fix identified
• 06/11/2023 Patched Alta cameras (Beta upgrade channel) released
• 13/11/2023 Patched Alta cameras (Stable upgrade channel) released
• 05/01/2024 Vulnerability publicly disclosed