Alta Video —1608: Firmware signature is not verified by the upgrade_sw command (via cssh)

Release Date

17th of July 2025.

Overview

A vulnerability allowing unauthorized firmware modification was discovered in the camera's custom SSH shell (cssh). There was a lack of firmware signature verification during when the upgrade_sw command was executed, enabling attackers with SSH access to upload and install malicious firmware. The issue was resolved by removing the affected command from production cameras.

Affected Products

• Avigilon Cloud-Native Cameras:
  • All Stable upgrade Channel versions before 7.4.10.
  • All Beta upgrade channel versions before 7.4.0.

Unaffected Products

• Alta Video: all versions.

• Avigilon Cloud-Native Cameras:

  • All Stable upgrade channel versions after and including 7.4.10.
  • All Beta upgrade channel versions after and including 7.4.0.

• Alta Video Cloud: all versions.

Resolution

This issue has been fixed in Avigilon Cloud-Native Cameras Beta upgrade channel version 7.4.0 and Stable upgrade channel version 7.4.10.

It is highly recommended that all Avigilon Cloud-Native camera installations running an affected version upgrade to the latest release as soon as possible. Releases are available to download through the Alta Video User Interface for Avigilon Cloud-Native cameras and the Avigilon Cloud-Native Camera Interface for unmanaged cameras.

Vulnerability Information

• CVSSv3 score: 8.4 (High)
• CVSSv3 vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Mitigations

There are no known mitigations for this issue.

Work arounds

There are no known work arounds for this issue.

Acknowledgements

Issue found internally by Alta Video.

Disclosure Timeline

• 02/08/2024 Issue found
• 05/12/2024 Root cause established
• 05/12/2024 Fix identified
• 10/02/2025 Patched Avigilon Cloud-Native Cameras (Beta upgrade channel) released
• 15/04/2025 Patched Avigilon Cloud-Native Cameras (Stable upgrade channel) released
• 17/07/2025 Vulnerability publicly disclosed