CVE-2022-46400
First published: Mon Dec 19 2022(Updated: )
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Microchip BM78 Firmware | =1.43 | |
| Microchip Bm78 Firmware | ||
| All of | ||
| Microchip Bm83 Firmware | =1.43 | |
| Microchip Bm83 Firmware | ||
| All of | ||
| Microchip RN4870 Firmware | =1.43 | |
| Microchip RN4870 Firmware | ||
| All of | ||
| Microchip RN4871 | =1.43 | |
| Microchip RN4871 Firmware | ||
| All of | ||
| Microchip Bm70 Firmware | =1.43 | |
| Microchip Bm70 Firmware | ||
| All of | ||
| Microchip Bm71 | =1.43 | |
| Microchip Bm71 Firmware | ||
| All of | ||
| Microchip PIC LightBlue Explorer Demo Firmware | =4.2_dt100112 | |
| Microchip PIC LightBlue Explorer Demo Firmware | ||
| All of | ||
| Microchip Is1870 | =1.43 | |
| Microchip IS1870 | ||
| All of | ||
| Microchip IS1871 | =1.43 | |
| Microchip IS1871 | ||
| Microchip BM78 Firmware | =1.43 | |
| Microchip Bm78 Firmware | ||
| Microchip Bm83 Firmware | =1.43 | |
| Microchip Bm83 Firmware | ||
| Microchip RN4870 Firmware | =1.43 | |
| Microchip RN4870 Firmware | ||
| Microchip RN4871 | =1.43 | |
| Microchip RN4871 Firmware | ||
| Microchip Bm70 Firmware | =1.43 | |
| Microchip Bm70 Firmware | ||
| Microchip Bm71 | =1.43 | |
| Microchip Bm71 Firmware | ||
| Microchip PIC LightBlue Explorer Demo Firmware | =4.2_dt100112 | |
| Microchip PIC LightBlue Explorer Demo Firmware | ||
| Microchip Is1870 | =1.43 | |
| Microchip IS1870 | ||
| Microchip IS1871 | =1.43 | |
| Microchip IS1871 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-46400.
What is the severity level of CVE-2022-46400?
The severity level of CVE-2022-46400 is medium with a CVSS score of 5.4.
Which software versions are affected by CVE-2022-46400?
The Microchip RN4870 module firmware 1.43 and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112 are affected by CVE-2022-46400.
How can attackers exploit CVE-2022-46400?
Attackers can exploit CVE-2022-46400 to bypass passkey entry in legacy pairing.
Are there any references available for CVE-2022-46400?
Yes, you can find references for CVE-2022-46400 at the following links: [link1], [link2], [link3].
- agent/references
- agent/type
- agent/severity
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/weakness
- agent/last-modified-date
- vendor/microchip
- canonical/microchip bm78 firmware
- version/microchip bm78 firmware/1.43
- canonical/microchip bm83 firmware
- version/microchip bm83 firmware/1.43
- canonical/microchip rn4870 firmware
- version/microchip rn4870 firmware/1.43
- canonical/microchip rn4871
- version/microchip rn4871/1.43
- canonical/microchip rn4871 firmware
- canonical/microchip bm70 firmware
- version/microchip bm70 firmware/1.43
- canonical/microchip bm71
- version/microchip bm71/1.43
- canonical/microchip bm71 firmware
- canonical/microchip pic lightblue explorer demo firmware
- version/microchip pic lightblue explorer demo firmware/4.2_dt100112
- canonical/microchip is1870
- version/microchip is1870/1.43
- canonical/microchip is1871
- version/microchip is1871/1.43