CVE-2021-3787

Vulnerability

A vulnerability (CVE-2021-3787) exists in some Motorola-branded Binatone Hubble cameras, where an attacker with local access to the device can obtain the MQTT credentials. These credentials secure communication with the backend Hubble services. The exact affected firmware versions are not specified in the available sources, but the advisory covers multiple CVEs across the Binatone camera line, including models running Hubble services [1].

Exploitation

To exploit this vulnerability, the attacker must have local access to the camera device, meaning they are physically present or have achieved shell access via another vulnerability (e.g., the adjacent unauthenticated RCE in CVE-2021-3577). With this access, the attacker can extract the MQTT credentials stored on the device, likely through file reading or memory dumping [1].

Impact

Successful extraction of MQTT credentials allows the attacker to authenticate to backend Hubble services as the camera device. This could lead to unauthorized access to the Hubble cloud platform, potentially resulting in information disclosure (e.g., viewing camera feeds, device settings) or further privilege escalation within the backend infrastructure [1].

Mitigation

Binatone has not publicly disclosed a specific firmware fix or release date for CVE-2021-3787 in the referenced advisory. Users are advised to restrict physical access to the camera and monitor for security updates from the manufacturer [1]. If the device is no longer supported, replacement may be the only option.