CVE-2022-46401
First published: Mon Dec 19 2022(Updated: )
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microchip BM78 Firmware | =1.43 | |
| Microchip Bm78 Firmware | ||
| Microchip Bm83 Firmware | =1.43 | |
| Microchip Bm83 Firmware | ||
| Microchip RN4870 Firmware | =1.43 | |
| Microchip RN4870 Firmware | ||
| Microchip RN4871 | =1.43 | |
| Microchip RN4871 Firmware | ||
| Microchip Bm70 Firmware | =1.43 | |
| Microchip Bm70 Firmware | ||
| Microchip Bm71 | =1.43 | |
| Microchip Bm71 Firmware | ||
| Microchip PIC LightBlue Explorer Demo Firmware | =4.2_dt100112 | |
| Microchip PIC LightBlue Explorer Demo Firmware | ||
| Microchip PIC32CX1012BZ25048 | ||
| Microchip Pic32cx1012bz25048 Firmware | ||
| Microchip Wbz451 Firmware | ||
| Microchip Wbz451 Firmware | ||
| Microchip RN4678 Firmware | =1.43 | |
| Microchip RN4678 Firmware | ||
| Microchip BM77 Firmware | =1.43 | |
| Microchip BM77 Firmware | ||
| Microchip BM64 Firmware | =1.43 | |
| Microchip BM64 Firmware | ||
| All of | ||
| Microchip BM78 Firmware | =1.43 | |
| Microchip Bm78 Firmware | ||
| All of | ||
| Microchip Bm83 Firmware | =1.43 | |
| Microchip Bm83 Firmware | ||
| All of | ||
| Microchip RN4870 Firmware | =1.43 | |
| Microchip RN4870 Firmware | ||
| All of | ||
| Microchip RN4871 | =1.43 | |
| Microchip RN4871 Firmware | ||
| All of | ||
| Microchip Bm70 Firmware | =1.43 | |
| Microchip Bm70 Firmware | ||
| All of | ||
| Microchip Bm71 | =1.43 | |
| Microchip Bm71 Firmware | ||
| All of | ||
| Microchip PIC LightBlue Explorer Demo Firmware | =4.2_dt100112 | |
| Microchip PIC LightBlue Explorer Demo Firmware | ||
| All of | ||
| Microchip PIC32CX1012BZ25048 | ||
| Microchip Pic32cx1012bz25048 Firmware | ||
| All of | ||
| Microchip Wbz451 Firmware | ||
| Microchip Wbz451 Firmware | ||
| All of | ||
| Microchip RN4678 Firmware | =1.43 | |
| Microchip RN4678 Firmware | ||
| All of | ||
| Microchip BM77 Firmware | =1.43 | |
| Microchip BM77 Firmware | ||
| All of | ||
| Microchip BM64 Firmware | =1.43 | |
| Microchip BM64 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-46401?
CVE-2022-46401 is a vulnerability in the Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) that allows the acceptance of PauseEncReqPlainText before pairing is complete.
How severe is CVE-2022-46401?
CVE-2022-46401 has a severity level of medium, with a CVSS score of 5.4.
Which software versions are affected by CVE-2022-46401?
The Microchip RN4870 module firmware version 1.43 is affected by CVE-2022-46401.
How can I fix CVE-2022-46401?
Currently, there is no official fix for CVE-2022-46401. It is recommended to follow the security guidelines provided by Microchip and stay updated with any patches or firmware updates they release.
Where can I find more information about CVE-2022-46401?
You can find more information about CVE-2022-46401 on the microchip.com website and in the proceedings articles published by Computer.org.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/author
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/microchip
- canonical/microchip bm78 firmware
- version/microchip bm78 firmware/1.43
- canonical/microchip bm83 firmware
- version/microchip bm83 firmware/1.43
- canonical/microchip rn4870 firmware
- version/microchip rn4870 firmware/1.43
- canonical/microchip rn4871
- version/microchip rn4871/1.43
- canonical/microchip rn4871 firmware
- canonical/microchip bm70 firmware
- version/microchip bm70 firmware/1.43
- canonical/microchip bm71
- version/microchip bm71/1.43
- canonical/microchip bm71 firmware
- canonical/microchip pic lightblue explorer demo firmware
- version/microchip pic lightblue explorer demo firmware/4.2_dt100112
- canonical/microchip pic32cx1012bz25048
- canonical/microchip pic32cx1012bz25048 firmware
- canonical/microchip wbz451 firmware
- canonical/microchip rn4678 firmware
- version/microchip rn4678 firmware/1.43
- canonical/microchip bm77 firmware
- version/microchip bm77 firmware/1.43
- canonical/microchip bm64 firmware
- version/microchip bm64 firmware/1.43