Arlo|Smart Home Security|Wireless HD Security Cameras
Arlo Community

Guest Brightness control is a potential security risk

Reply
Discussion stats
  • 3 Replies
  • ‎2018-06-08 09:57 AM
  • 4324 Views
  • 0 Likes
  • 2 In Conversation
rcalver
Aspirant
Aspirant
‎2018-06-08 09:57 AM

I gave someone guest access to one of the cameras and recently noticed that it was much darker.  From this to this.  As you can see it's much harder to make out details.  It took me a bit, but I figured out that the brightness level had been turned down to the minimum.  

 

It doesn't appear that the guest did anything suspicious beyond that, but I'm still reluctant about whether I'll let them keep access.  I think I trust him well enough, but would really rather not rely on trust.  

 

Also, that said, guest accounts should be able to be given access to zero devices (currently the save button is greyed out when no device is checked) or the account suspended.  As it stands the only solution is to delete his account completely and then go through the new account process whenever he wants to review videos.  

Labels:
0 Likes
Reply
Message 1 of 4
4,324
3 REPLIES 3
JamesC
Community Manager
Community Manager
‎2018-06-11 10:27 AM

recalver,

 

These rights can be adjusted by toggling access rights within the Grant Access settings. Take a look here for a list of things that shared users will or will not have access to based on access rights:

 

What privileges do my friends have when I grant them access rights in my Arlo account?

 

JamesC

0 Likes
Reply
Message 2 of 4
4,289
rcalver
Aspirant
Aspirant
‎2018-06-13 11:09 AM

That's just the thing - they don't have access rights.  Yet they have control over the brightness.  

 

Also, that same camera recently had night vision disabled.  I'm the only person with access rights.  So, either there's a problem with the perms of guest accounts or there's a security hole that my guest was able to use to get admin access to the system... either way, something isn't right here.  

0 Likes
Reply
Message 3 of 4
4,266
JamesC
Community Manager
Community Manager
‎2018-06-14 08:28 AM

rcalver,

 

Friends without access rights have the ability to control the camera brightness. Take a look at the list in the article linked above for a list of what users can do with or without access rights.

 

JamesC

0 Likes
Reply
Message 4 of 4
4,254
Related Labels
Discussion stats
  • 3 Replies
  • ‎2018-06-08 09:57 AM
  • 4325 Views
  • 0 Likes
  • 2 In Conversation

Arlo
Support

Visit our support page for answers from simple setup to security optimization. Search for something specific or select a product or category for helpful articles and videos.

Visit Arlo Support

Arlo App
for Support

For personalized support specific to the Arlo products you own, access Support from within the Arlo iOS or Android App. Simply login to your Arlo App, go to Settings, Support, then select the Arlo product you would like support for.