Vulnerability Description
A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow command injection by setting a specially crafted network configuration. This vulnerability is the same as CNVD-2020-68652.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lenovo | Smart Camera C2E Firmware | < 01.03.29.16 |
| Lenovo | Smart Camera C2E | - |
| Lenovo | Smart Camera X3 Firmware | < 01.03.29.16 |
| Lenovo | Smart Camera X3 | - |
| Lenovo | Smart Camera X5 Firmware | < 01.03.29.16 |
| Lenovo | Smart Camera X5 | - |
Related Weaknesses (CWE)
References
- https://iknow.lenovo.com.cn/detail/dc_198417.htmlVendor Advisory
- https://www.cnvd.org.cn/flaw/show/CNVD-2020-68652Not Applicable
- https://iknow.lenovo.com.cn/detail/dc_198417.htmlVendor Advisory
- https://www.cnvd.org.cn/flaw/show/CNVD-2020-68652Not Applicable
FAQ
What is CVE-2021-3617?
CVE-2021-3617 is a vulnerability with a CVSS score of 7.2 (HIGH). A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow command injection by setting a specially crafted network configuration. This vulnerability is the same as CNVD-2020...
How severe is CVE-2021-3617?
CVE-2021-3617 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-3617?
Check the references section above for vendor advisories and patch information. Affected products include: Lenovo Smart Camera C2E Firmware, Lenovo Smart Camera C2E, Lenovo Smart Camera X3 Firmware, Lenovo Smart Camera X3, Lenovo Smart Camera X5 Firmware.