567 matches found
CVE-2020-27636
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random...
Code injection
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random...
CVE-2020-27636
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random...
CVE-2020-27636
CVE-2020-27636 affects Microchip MPLAB Net 3.6.1, where TCP Initial Sequence Numbers (ISNs) are generated with insufficient randomness. This weak ISN generation can enable spoofing or disruption of TCP connections, with the CVSSv3 base score listed as 9.1 (CRITICAL) in NVD. The vulnerability is s...
CVE-2020-27636
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random...
kernel: PCI: microchip: Fix refcount leak in mc_pcie_init_irq_domains()
In the Linux kernel, the following vulnerability has been resolved: PCI: microchip: Fix refcount leak in mcpcieinitirqdomains ofgetnextchild returns a node pointer with refcount incremented, so we should use ofnodeput on it when we don't need it anymore. mcpcieinitirqdomains only calls ofnodeput ...
CBL Mariner 2.0 Security Update: kernel (CVE-2022-47519)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-47519 advisory. - An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTROPERCHANNEL...
CVE-2022-40022
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
Command injection
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
CVE-2022-40022
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
Microchip Technology (Microsemi) SyncServer S650 命令注入漏洞
Microchip Technology SyncServer Microsemi SyncServer is a series of network time servers from Microchip Technology USA. A security vulnerability exists in Microchip Technology Microsemi SyncServer S650. An attacker could exploit this vulnerability to perform a command injection attack...
CVE-2022-40022
Microchip Technology Microsemi SyncServer S650 was discovered to contain a command injection vulnerability...
CVE-2022-40022
Symmetricom SyncServer S650 is affected by CVE-2022-40022, an unauthenticated command-injection vulnerability in the /controller/ping.php endpoint. The NVD entry and Nuclei template describe an exploit linked to a command execution that affects the SyncServer S650 line; the vulnerability is state...
CVE-2022-45191
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a pair confirm message with wrong values...
CVE-2022-45190
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can bypass passkey entry in the legacy pairing of the device...
CVE-2022-45190
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can bypass passkey entry in the legacy pairing of the device...
CVE-2022-45191
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a pair confirm message with wrong values...
CVE-2022-40480
Nordic Semiconductor, Microchip Technology NRF5340-DK DT100112 was discovered to contain an issue which allows attackers to cause a Denial of Service DoS via a crafted ConReq packet...
CVE-2022-45192
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a cleartext encryption pause request...
Code injection
Nordic Semiconductor, Microchip Technology NRF5340-DK DT100112 was discovered to contain an issue which allows attackers to cause a Denial of Service DoS via a crafted ConReq packet...