First published: Mon Dec 19 2022(Updated: )
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microchip Bm78 Firmware | =1.43 | |
Microchip Bm78 | ||
Microchip Bm83 Firmware | =1.43 | |
Microchip Bm83 | ||
Microchip Rn4870 Firmware | =1.43 | |
Microchip RN4870 | ||
Microchip Rn4871 Firmware | =1.43 | |
Microchip Rn4871 | ||
Microchip Bm70 Firmware | =1.43 | |
Microchip Bm70 | ||
Microchip Bm71 Firmware | =1.43 | |
Microchip Bm71 | ||
Microchip Pic Lightblue Explorer Demo Firmware | =4.2_dt100112 | |
Microchip PIC LightBlue Explorer Demo | ||
Microchip Is1871 Firmware | =1.43 | |
Microchip Is1871 | ||
Microchip Is1870 Firmware | =1.43 | |
Microchip Is1870 | ||
All of | ||
Microchip Bm78 Firmware | =1.43 | |
Microchip Bm78 | ||
All of | ||
Microchip Bm83 Firmware | =1.43 | |
Microchip Bm83 | ||
All of | ||
Microchip Rn4870 Firmware | =1.43 | |
Microchip RN4870 | ||
All of | ||
Microchip Rn4871 Firmware | =1.43 | |
Microchip Rn4871 | ||
All of | ||
Microchip Bm70 Firmware | =1.43 | |
Microchip Bm70 | ||
All of | ||
Microchip Bm71 Firmware | =1.43 | |
Microchip Bm71 | ||
All of | ||
Microchip Pic Lightblue Explorer Demo Firmware | =4.2_dt100112 | |
Microchip PIC LightBlue Explorer Demo | ||
All of | ||
Microchip Is1871 Firmware | =1.43 | |
Microchip Is1871 | ||
All of | ||
Microchip Is1870 Firmware | =1.43 | |
Microchip Is1870 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-46403 is high with a CVSS score of 8.6.
Microchip products with firmware version 1.43, including Microchip Bm78 Firmware, Microchip Bm83 Firmware, Microchip Rn4870 Firmware, Microchip Rn4871 Firmware, Microchip Bm70 Firmware, Microchip Bm71 Firmware, Microchip Pic Lightblue Explorer Demo Firmware, Microchip Is1871 Firmware, and Microchip Is1870 Firmware.
CVE-2022-46403 exposes a vulnerability in the Microchip RN4870 module firmware 1.43, allowing an attacker to mishandle reject messages.
Yes, Microchip RN4870 module firmware 1.43 is vulnerable to CVE-2022-46403.
You can find more information about CVE-2022-46403 at the following references: [https://microchip.com](https://microchip.com), [https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM](https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM), [https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG](https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG)