Microchip Timeprovider 4100 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Microchip Timeprovider 4100 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2025-47901 — CVSS 8.8 (high): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Provider 4100…
CVE-2025-47902 — CVSS 8.8 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip Time Provider 4100 allows…
CVE-2025-47900 — CVSS 8.8 (high): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Provider 4100…
CVE-2024-9054 — CVSS 8.8 (high): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Exposure of Sensitive Information to an…
CVE-2024-7801 — CVSS 6.5 (medium): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip TimeProvider 4100 (Data…
CVE-2024-43683 — CVSS 6.1 (medium): URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Microchip TimeProvider 4100 allows XSS Through HTTP Headers.This issue…
CVE-2024-43686 — CVSS 6.1 (medium): Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip TimeProvider 4100…
CVE-2024-43687 — CVSS 6.1 (medium): Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip TimeProvider 4100…
CVE-2025-47904 — CVSS 4.1 (medium): Download of Code Without Integrity Check vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Update.This issue…