October 30, 2018

The NCCIC has updated this advisory with additional information on the nature of the vulnerabilities, its evaluation of the risk presented, the affected products, and mitigation measures. NCCIC/ICS-CERT.

April 24, 2018

The NCCIC has released an advisory on vulnerabilities in Vecna Vgo Robot. All versions prior to 3.0.3.52164 are affected. Successful exploitation of these vulnerabilities could allow an attacker to capture firmware updates through network traffic and could allow remote code execution on the VGo Robot, a mobile robotic assistant. Vecna has released a recommended update to mitigate the vulnerabilities. The NCCIC recommends customers should check with their device manufacturers and apply any available updates as soon as practical. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of the vulnerabilities. NCCIC/ICS-CERT.