cbcvebase.

Microchip Time Provider 4100 vulnerabilities

5 known vulnerabilities affecting microchip/time_provider_4100.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-47901P2HIGHCVSS 8.8fixed in 2.52025-10-20
CVE-2025-47901 [HIGH] CWE-78 CVE-2025-47901: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerabi Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Provider 4100 allows OS Command Injection.This issue affects Time Provider 4100: before 2.5.
nvd
CVE-2025-47900P2HIGHCVSS 8.8fixed in 2.52025-10-20
CVE-2025-47900 [HIGH] CWE-78 CVE-2025-47900: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerabi Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Provider 4100 allows OS Command Injection.This issue affects Time Provider 4100: before 2.5.
nvd
CVE-2025-9497P3CRITICALCVSS 9.8fixed in 2.5.02026-03-28
CVE-2025-9497 [CRITICAL] CWE-798 CVE-2025-9497: Use of Hard-coded Credentials vulnerability in Microchip Time Provider 4100 allows Malicious Manual Use of Hard-coded Credentials vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Update.This issue affects Time Provider 4100: before 2.5.0.
nvd
CVE-2025-47902P3HIGHCVSS 8.8fixed in 2.52025-10-20
CVE-2025-47902 [HIGH] CWE-89 CVE-2025-47902: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip Time Provider 4100 allows SQL Injection.This issue affects Time Provider 4100: before 2.5.
nvd
CVE-2025-47904P4MEDIUMCVSS 4.1fixed in 2.52026-02-24
CVE-2025-47904 [MEDIUM] CWE-494 CVE-2025-47904: Download of Code Without Integrity Check vulnerability in Microchip Time Provider 4100 allows Malici Download of Code Without Integrity Check vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Update.This issue affects Time Provider 4100: before 2.5.
nvd
Microchip Time Provider 4100 vulnerabilities | cvebase