1. Home
  2. CVE Database
  3. CVE-2022-46399
HIGH · 7.5

CVE-2022-46399

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.

Vulnerability Description

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
MicrochipBm78 Firmware1.43
MicrochipBm78-
MicrochipBm83 Firmware1.43
MicrochipBm83-
MicrochipRn4870 Firmware1.43
MicrochipRn4870-
MicrochipRn4871 Firmware1.43
MicrochipRn4871-
MicrochipBm70 Firmware1.43
MicrochipBm70-
MicrochipBm71 Firmware1.43
MicrochipBm71-
MicrochipPic Lightblue Explorer Demo Firmware4.2_dt100112
MicrochipPic Lightblue Explorer Demo-
MicrochipBm64 Firmware1.43
MicrochipBm64-
MicrochipBm77 Firmware1.43
MicrochipBm77-
MicrochipIs1870 Firmware1.43
MicrochipIs1870-

Related Weaknesses (CWE)

CWE-400

References

FAQ

What is CVE-2022-46399?

CVE-2022-46399 is a vulnerability with a CVSS score of 7.5 (HIGH). The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.

How severe is CVE-2022-46399?

CVE-2022-46399 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-46399?

Check the references section above for vendor advisories and patch information. Affected products include: Microchip Bm78 Firmware, Microchip Bm78, Microchip Bm83 Firmware, Microchip Bm83, Microchip Rn4870 Firmware.