{"containers":{"cna":{"affected":[{"product":"Binatone Hubble Cameras","vendor":"Motorola","versions":[{"status":"affected","version":"various"}]}],"credits":[{"lang":"en","value":"Motorola thanks Lenovo Global Security Lab for reporting these issues."}],"descriptions":[{"lang":"en","value":"An improper access control vulnerability was reported in some Motorola-branded Binatone Hubble Cameras which could allow an unauthenticated attacker on the same network as the device to access administrative pages that could result in information disclosure or device firmware update with verified firmware."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"LOW","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-424","description":"CWE-424 Improper Protection of Alternate Path","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2021-11-12T22:05:52.000Z","orgId":"da227ddf-6e25-4b41-b023-0f976dcaca4b","shortName":"lenovo"},"references":[{"tags":["x_refsource_MISC"],"url":"https://binatoneglobal.com/security-advisory/"}],"solutions":[{"lang":"en","value":"Update to the camera firmware version (or newer version) indicated in the Product Impact section of the Binatone Security Advisory: https://binatoneglobal.com/security-advisory/."}],"source":{"discovery":"UNKNOWN"},"x_generator":{"engine":"Vulnogram 0.0.9"},"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@lenovo.com","ID":"CVE-2021-3793","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Binatone Hubble Cameras","version":{"version_data":[{"version_affected":"=","version_value":"various"}]}}]},"vendor_name":"Motorola"}]}},"credit":[{"lang":"eng","value":"Motorola thanks Lenovo Global Security Lab for reporting these issues."}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An improper access control vulnerability was reported in some Motorola-branded Binatone Hubble Cameras which could allow an unauthenticated attacker on the same network as the device to access administrative pages that could result in information disclosure or device firmware update with verified firmware."}]},"generator":{"engine":"Vulnogram 0.0.9"},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"LOW","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-424 Improper Protection of Alternate Path"}]}]},"references":{"reference_data":[{"name":"https://binatoneglobal.com/security-advisory/","refsource":"MISC","url":"https://binatoneglobal.com/security-advisory/"}]},"solution":[{"lang":"en","value":"Update to the camera firmware version (or newer version) indicated in the Product Impact section of the Binatone Security Advisory: https://binatoneglobal.com/security-advisory/."}],"source":{"discovery":"UNKNOWN"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T17:09:08.614Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://binatoneglobal.com/security-advisory/"}]}]},"cveMetadata":{"assignerOrgId":"da227ddf-6e25-4b41-b023-0f976dcaca4b","assignerShortName":"lenovo","cveId":"CVE-2021-3793","datePublished":"2021-11-12T22:05:52.000Z","dateReserved":"2021-09-09T00:00:00.000Z","dateUpdated":"2024-08-03T17:09:08.614Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}