2 matches found
CVE-2021-37605
CVE-2021-37605 affects Microchip MiWi software (v6.5 and earlier/legacy). The vulnerability arises because the stack validates only two of four Message Integrity Check (MIC) bytes, reducing integrity protection. This is documented across multiple sources (NVD/NVD CVE entry) and indicates a potent...
CVE-2021-37604
The CVE-2021-37604 entry pertains to Microchip MiWi software (v6.5 and earlier). The vulnerability arises because frame counters can be validated/updated prior to message authentication, allowing an attacker to inject messages with inflated frame counters and invalid payloads. This can cause deni...