Vulnerabilities > Microchip

DATE CVE VULNERABILITY TITLE RISK
2023-02-13 CVE-2022-40022 Command Injection vulnerability in Microchip Syncserver S650 Firmware
Microchip Technology (Microsemi) SyncServer S650 was discovered to contain a command injection vulnerability.
network
low complexity
microchip CWE-77
critical
9.8
2023-02-08 CVE-2022-40480 Resource Exhaustion vulnerability in multiple products
Nordic Semiconductor, Microchip Technology NRF5340-DK DT100112 was discovered to contain an issue which allows attackers to cause a Denial of Service (DoS) via a crafted ConReq packet.
low complexity
microchip nordicsemi CWE-400
6.5
2023-02-08 CVE-2022-45190 Incorrect Authorization vulnerability in Microchip Rn4870 Firmware 1.43
An issue was discovered on Microchip RN4870 1.43 devices.
high complexity
microchip CWE-863
5.3
2023-02-08 CVE-2022-45191 Improper Validation of Integrity Check Value vulnerability in Microchip Rn4870 Firmware 1.43
An issue was discovered on Microchip RN4870 1.43 devices.
low complexity
microchip CWE-354
6.5
2023-02-08 CVE-2022-45192 Unspecified vulnerability in Microchip Rn4870 Firmware 1.43
An issue was discovered on Microchip RN4870 1.43 devices.
low complexity
microchip
6.5
2022-12-19 CVE-2022-46399 Incorrect Authorization vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.
high complexity
microchip CWE-863
7.5
2022-12-19 CVE-2022-46400 Incorrect Authorization vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing.
low complexity
microchip CWE-863
5.4
2022-12-19 CVE-2022-46401 Unspecified vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete.
low complexity
microchip
5.4
2022-12-19 CVE-2022-46402 Improper Validation of Integrity Check Value vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values.
low complexity
microchip CWE-354
6.5
2022-12-19 CVE-2022-46403 Unspecified vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages.
network
low complexity
microchip
8.6