CVE-2021-3790
12.11.2021, 22:15
A buffer overflow was reported in the local web server of some Motorola-branded Binatone Hubble Cameras that could allow an unauthenticated attacker on the same network to perform a denial-of-service attack against the device.
| Vendor | Product | Version |
|---|---|---|
| binatoneglobal | halo\+_camera_firmware | 𝑥 < 03.50.14 |
| binatoneglobal | comfort_85_connect_firmware | 𝑥 < 03.40.02 |
| binatoneglobal | mbp3855_firmware | 𝑥 < 03.40.00 |
| binatoneglobal | focus_68_firmware | - |
| binatoneglobal | focus_68_firmware | - |
| binatoneglobal | focus_72r_firmware | 𝑥 < 03.40.00 |
| binatoneglobal | focus_72r_firmware | 𝑥 < 03.40.00 |
| binatoneglobal | cn28_firmware | - |
| binatoneglobal | cn50_firmware | - |
| binatoneglobal | comfort_40_firmware | - |
| binatoneglobal | comfort_50_connect_firmware | - |
| binatoneglobal | mbp4855_firmware | - |
| binatoneglobal | mbp3667_firmware | - |
| binatoneglobal | mbp669_connect_firmware | - |
| binatoneglobal | lux_64_firmware | - |
| binatoneglobal | lux_65_firmware | - |
| binatoneglobal | connect_view_65_firmware | - |
| binatoneglobal | lux_85_connect_firmware | - |
| binatoneglobal | ease44_firmware | - |
| binatoneglobal | connect_20_firmware | - |
| binatoneglobal | mbp6855_firmware | - |
| binatoneglobal | cn40_firmware | - |
| binatoneglobal | cn75_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-121 - Stack-based Buffer OverflowA stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
- CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.