Inadequate Encryption Strength
CVE-2021-3789
Summary
An information disclosure vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access to obtain the encryption key used to decrypt firmware update packages.
- LOW
- PHYSICAL
- NONE
- UNCHANGED
- NONE
- NONE
- HIGH
- NONE
CWE-326 - Inadequate Encryption Strength
The software stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
References
Advisory Timeline
- Published