Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microchip vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2020-9031
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to daemonlog.php.
Microchip Syncserver S100 Firmware 2.90.70.3
Microchip Syncserver S200 Firmware 1.30
Microchip Syncserver S250 Firmware 1.25
Microchip Syncserver S300 Firmware 2.65.0
Microchip Syncserver S350 Firmware 2.80.1
5
CVSSv2
CVE-2020-9034
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices mishandle session validation, leading to unauthenticated creation, modification, or elimination of users.
Microchip Syncserver S100 Firmware 2.90.70.3
Microchip Syncserver S200 Firmware 1.30
Microchip Syncserver S250 Firmware 1.25
Microchip Syncserver S300 Firmware 2.65.0
Microchip Syncserver S350 Firmware 2.80.1
4.3
CVSSv2
CVE-2020-9028
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user).
Microchip Syncserver S100 Firmware 2.90.70.3
Microchip Syncserver S200 Firmware 1.30
Microchip Syncserver S250 Firmware 1.25
Microchip Syncserver S300 Firmware 2.65.0
Microchip Syncserver S350 Firmware 2.80.1
6.4
CVSSv2
CVE-2020-9032
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to kernlog.php.
Microchip Syncserver S100 Firmware 2.90.70.3
Microchip Syncserver S200 Firmware 1.30
Microchip Syncserver S250 Firmware 1.25
Microchip Syncserver S300 Firmware 2.65.0
Microchip Syncserver S350 Firmware 2.80.1
6.4
CVSSv2
CVE-2020-9033
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to authlog.php.
Microchip Syncserver S100 Firmware 2.90.70.3
Microchip Syncserver S200 Firmware 1.30
Microchip Syncserver S250 Firmware 1.25
Microchip Syncserver S300 Firmware 2.65.0
Microchip Syncserver S350 Firmware 2.80.1
6.1
CVSSv2
CVE-2019-19195
The Bluetooth Low Energy implementation on Microchip Technology BluSDK Smart up to and including 6.2 for ATSAMB11 devices does not properly restrict link-layer data length on reception, allowing attackers in radio range to cause a denial of service (crash) via a crafted packet.
Microchip Atmsamb11 Blusdk Smart
4.6
CVSSv2
CVE-2019-16128
Microchip CryptoAuthentication Library CryptoAuthLib before 20191122 has a Buffer Overflow (issue 1 of 2).
Microchip Cryptoauthlib
4.6
CVSSv2
CVE-2019-16129
Microchip CryptoAuthentication Library CryptoAuthLib before 20191122 has a Buffer Overflow (issue 2 of 2).
Microchip Cryptoauthlib
NA
CVE-2023-51438
A vulnerability has been identified in SIMATIC IPC1047E (All versions with maxView Storage Manager < V4.14.00.26068 on Windows), SIMATIC IPC647E (All versions with maxView Storage Manager < V4.14.00.26068 on Windows), SIMATIC IPC847E (All versions with maxView Storage Manag...
Microchip Maxview Storage Manager
NA
CVE-2022-40022
Microchip Technology (Microsemi) SyncServer S650 exists to contain a command injection vulnerability.
Microchip Syncserver S650 Firmware -
1 Metasploit module
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »