CVE-2026-12620
- EPSS 0.24%
- Veröffentlicht 19.06.2026 15:59:07
- Zuletzt bearbeitet 09.07.2026 15:55:02
The GridTime 3000 GNSS Time Server leaks the access token in the URL parameters of some endpoints. This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0.
CVE-2026-12621
- EPSS 0.23%
- Veröffentlicht 19.06.2026 15:53:38
- Zuletzt bearbeitet 09.07.2026 16:42:05
Improper neutralization of input during web page generation XSS vulnerability in the GridTime 3000 (password reset form) allows XSS. This issue affects GridTime 3000: from 1.0r0.03 before 1.2r0.0.
CVE-2026-12622
- EPSS 0.21%
- Veröffentlicht 19.06.2026 15:48:02
- Zuletzt bearbeitet 09.07.2026 17:07:50
The GridTime 3000 GNSS Time Server has an open redirect vulnerability in the password change form submission. This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0.
CVE-2026-12619
- EPSS 0.23%
- Veröffentlicht 19.06.2026 15:40:50
- Zuletzt bearbeitet 09.07.2026 16:41:04
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip GridTime 3000 allows Cross-Site Scripting (XSS). This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0.