Search Results | AttackerKB

Show filters

Topics 8 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

8 Total Results

Displaying 1-8 of 8

Attacker Value

Unknown

CVE-2022-45192

Disclosure Date: February 08, 2023 (last updated October 08, 2023)

An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a cleartext encryption pause request.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-45191

Disclosure Date: February 08, 2023 (last updated October 08, 2023)

An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a pair confirm message with wrong values.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-45190

Disclosure Date: February 08, 2023 (last updated October 08, 2023)

An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can bypass passkey entry in the legacy pairing of the device.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-46403

Disclosure Date: December 19, 2022 (last updated October 08, 2023)

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-46402

Disclosure Date: December 19, 2022 (last updated October 08, 2023)

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-46401

Disclosure Date: December 19, 2022 (last updated October 08, 2023)

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-46400

Disclosure Date: December 19, 2022 (last updated October 08, 2023)

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-46399

Disclosure Date: December 19, 2022 (last updated October 08, 2023)

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.

Attack Vector: Adjacent Network Privileges: None User Interaction: None

0