Remote Code Execution Vulnerability in Motorola Binatone Hubble Cameras
CVE-2021-3577

8.8HIGH

Key Information:

Vendor: Motorola
Status: Binatone Hubble Cameras
Vendor: CVE Published:; 12 November 2021

Summary

An unauthenticated remote code execution vulnerability exists in specific models of Motorola-branded Binatone Hubble Cameras. This flaw potentially allows attackers on the same local network to gain unauthorized control over the device, posing significant security risks to users. To mitigate these risks, it is recommended to monitor network traffic and regularly update the device firmware as recommended by the vendor. Detailed security guidelines can be found on Binatone's security advisory page.

Affected Version(s)

Binatone Hubble Cameras various

References

https://binatoneglobal.com/security-advisory/

x_refsource_MISC

EPSS Score

86% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2021
Vulnerability Reserved
Jun 2, 2021

Credit

Motorola thanks Randy Westergren for reporting this issue.