CVE-2022-45190
- EPSS 0.01%
- Published 08.02.2023 00:15:08
- Last modified 25.03.2025 16:15:16
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can bypass passkey entry in the legacy pairing of the device.
CVE-2022-45191
- EPSS 0.02%
- Published 08.02.2023 00:15:08
- Last modified 25.03.2025 18:15:29
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a pair confirm message with wrong values.
CVE-2022-45192
- EPSS 0.04%
- Published 08.02.2023 00:15:08
- Last modified 25.03.2025 16:15:16
An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a cleartext encryption pause request.
CVE-2022-46401
- EPSS 0.07%
- Published 19.12.2022 23:15:11
- Last modified 17.04.2025 15:15:51
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete.
CVE-2022-46402
- EPSS 0.07%
- Published 19.12.2022 23:15:11
- Last modified 17.04.2025 15:15:51
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values.
CVE-2022-46403
- EPSS 0.21%
- Published 19.12.2022 23:15:11
- Last modified 17.04.2025 15:15:52
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages.
CVE-2022-46399
- EPSS 0.16%
- Published 19.12.2022 23:15:10
- Last modified 17.04.2025 15:15:50
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.
CVE-2022-46400
- EPSS 0.03%
- Published 19.12.2022 23:15:10
- Last modified 17.04.2025 15:15:51
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing.