Vulnerabilities > Microchip

DATE CVE VULNERABILITY TITLE RISK
2021-08-05 CVE-2021-37605 Incorrect Authorization vulnerability in Microchip Miwi 6.5
In the Microchip MiWi v6.5 software stack, there is a possibility of frame counters being being validated / updated prior to message authentication.
network
low complexity
microchip CWE-863
5.0
2021-08-05 CVE-2021-37604 Incorrect Authorization vulnerability in Microchip Miwi 6.5
In the Microchip MiWi v6.5 software stack, there is a possibility of frame counters being validated/updated prior to message authentication.
network
low complexity
microchip CWE-863
5.0
2021-01-19 CVE-2020-20950 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26.
4.3
2020-12-11 CVE-2020-17441 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in picoTCP 1.7.0.
network
low complexity
altran microchip CWE-125
6.4
2020-10-22 CVE-2019-16128 Classic Buffer Overflow vulnerability in Microchip Cryptoauthlib
Microchip CryptoAuthentication Library CryptoAuthLib prior to 20191122 has a Buffer Overflow (issue 1 of 2).
local
low complexity
microchip CWE-120
4.6
2020-10-22 CVE-2019-16127 Integer Overflow or Wraparound vulnerability in Microchip Advanced Software Framework 4
Atmel Advanced Software Framework (ASF) 4 has an Integer Overflow.
network
low complexity
microchip CWE-190
6.4
2020-10-22 CVE-2019-16129 Classic Buffer Overflow vulnerability in Microchip Cryptoauthlib
Microchip CryptoAuthentication Library CryptoAuthLib prior to 20191122 has a Buffer Overflow (issue 2 of 2).
local
low complexity
microchip CWE-120
4.6
2020-09-14 CVE-2020-12787 Unspecified vulnerability in Microchip products
Microchip Atmel ATSAMA5 products in Secure Mode allow an attacker to bypass existing security mechanisms related to applet handling.
network
microchip
4.3
2020-09-14 CVE-2020-12788 Information Exposure Through Discrepancy vulnerability in Microchip products
CMAC verification functionality in Microchip Atmel ATSAMA5 products is vulnerable to vulnerable to timing and power analysis attacks.
network
low complexity
microchip CWE-203
5.0
2020-09-14 CVE-2020-12789 Use of Hard-coded Credentials vulnerability in Microchip products
The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets.
network
microchip CWE-798
4.3