3 matches found
CVE-2025-9497 Hardcoded Upgrade Decryption Passwords
Use of Hard-coded Credentials vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Update.This issue affects Time Provider 4100: before 2.5.0...
CVE-2025-9497 Hardcoded Upgrade Decryption Passwords
Use of Hard-coded Credentials vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Update.This issue affects Time Provider 4100: before 2.5.0...
CVE-2025-9497
CVE-2025-9497 affects Microchip Time Provider 4100 (prior to v2.5.0). The vulnerability arises from hard-coded credentials used for the upgrade path, enabling a malicious manual software update. CVSS metrics indicate a high-severity issue with LOCAL attack vector and HIGH impact on confidentialit...