CVE-2021-3790

Published: Nov 12, 2021Modified: Jun 17, 2026

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

A buffer overflow was reported in the local web server of some Motorola-branded Binatone Hubble Cameras that could allow an unauthenticated attacker on the same network to perform a denial-of-service attack against the device.

Affected (21)

Products: Binatoneglobal: Halo+ Camera Firmware, Comfort 85 Connect Firmware, Mbp3855 Firmware, Focus 68 Firmware, Focus 72r Firmware, Cn28 Firmware, Cn50 Firmware, Comfort 40 Firmware, Comfort 50 Connect Firmware, Mbp4855 Firmware, Mbp3667 Firmware, Mbp669 Connect Firmware, Lux 64 Firmware, Lux 65 Firmware, Connect View 65 Firmware, Lux 85 Connect Firmware, Ease44 Firmware, Connect 20 Firmware, Mbp6855 Firmware, Cn40 Firmware, Cn75 Firmware

Binatoneglobal

21 products

Halo+ Camera Firmware

Comfort 85 Connect Firmware

Comfort 50 Connect Firmware

Mbp4855 Firmware

Mbp3667 Firmware

Mbp669 Connect Firmware

Lux 64 Firmware

Lux 65 Firmware

Connect View 65 Firmware

Lux 85 Connect Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Halo+ Camera Firmware	Before 03.50.14

Running on/with	Platform Versions
Binatoneglobal Halo+ Camera	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Comfort 85 Connect Firmware	Before 03.40.02

Running on/with	Platform Versions
Binatoneglobal Comfort 85 Connect	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Mbp3855 Firmware	Before 03.40.00

Running on/with	Platform Versions
Binatoneglobal Mbp3855	All versions

Configuration D

1 platform

Running on/with	Platform Versions
Binatoneglobal Focus 68	Version v100

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Focus 68 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Focus 68	Version v200

Configuration F

1 platform

Running on/with	Platform Versions
Binatoneglobal Focus 72r	Version v100

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Focus 72r Firmware	Before 03.40.00

Running on/with	Platform Versions
Binatoneglobal Focus 72r	Version v200

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Cn28 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Cn28	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Cn50 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Cn50	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Comfort 40 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Comfort 40	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Comfort 50 Connect Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Comfort 50 Connect	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Mbp4855 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Mbp4855	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Mbp3667 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Mbp3667	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Mbp669 Connect Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Mbp669 Connect	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Lux 64 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Lux 64	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Lux 65 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Lux 65	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Connect View 65 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Connect View 65	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Lux 85 Connect Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Lux 85 Connect	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Ease44 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Ease44	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Connect 20 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Connect 20	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Mbp6855 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Mbp6855	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Cn40 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Cn40	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binatoneglobal Cn75 Firmware	All versions

Running on/with	Platform Versions
Binatoneglobal Cn75	All versions

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-121

Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

References (2)

https://binatoneglobal.com/security-advisory/

Source: psirt@lenovo.com

Vendor Advisory

https://binatoneglobal.com/security-advisory/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.