Known Vulnerabilities for products from Microchip
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Microchip".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Microchip can be found at device.report : Microchip
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-47904 | Download of Code Without Integrity Check vulnerability in Microchip Time Provider 4100 allows Malicious Manual Software Updat... | Not Provided | 2026-02-24 | 2026-03-31 |
| CVE-2025-47902 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip Time Provider... | Not Provided | 2025-10-20 | 2026-03-31 |
| CVE-2025-47901 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Pr... | Not Provided | 2025-10-20 | 2026-03-31 |
| CVE-2025-47900 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Microchip Time Pr... | Not Provided | 2025-10-20 | 2026-03-31 |
| CVE-2025-9497 | Not Provided | 2026-03-28 | 2026-04-01 | |
| CVE-2021-37605 | In version 6.5 Microchip MiWi software and all previous versions including legacy products, the stack is validating only two ... | 7.5 - HIGH | 2021-08-05 | 2022-07-12 |
| CVE-2021-37604 | In version 6.5 of Microchip MiWi software and all previous versions including legacy products, there is a possibility of fram... | 7.5 - HIGH | 2021-08-05 | 2022-07-12 |
| CVE-2020-27636 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.1 - CRITICAL | 2023-10-10 | 2023-10-13 |
| CVE-2020-20950 | Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-... | 5.9 - MEDIUM | 2021-01-19 | 2021-09-08 |
| CVE-2020-17441 | An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 headers does not validate whether the IPv6 payload... | 9.1 - CRITICAL | 2020-12-11 | 2020-12-14 |
| CVE-2020-12789 | The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets. | 7.5 - HIGH | 2020-09-14 | 2020-09-18 |
| CVE-2020-12788 | CMAC verification functionality in Microchip Atmel ATSAMA5 products is vulnerable to vulnerable to timing and power analysis ... | 7.5 - HIGH | 2020-09-14 | 2020-09-18 |
| CVE-2020-12787 | Microchip Atmel ATSAMA5 products in Secure Mode allow an attacker to bypass existing security mechanisms related to applet ha... | 7.5 - HIGH | 2020-09-14 | 2020-09-18 |
| CVE-2020-9034 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices mishandle session validatio... | 7.5 - HIGH | 2020-02-17 | 2021-07-21 |
| CVE-2020-9033 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal v... | 6.5 - MEDIUM | 2020-02-17 | 2020-02-19 |
| CVE-2020-9032 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal v... | 6.5 - MEDIUM | 2020-02-17 | 2020-02-19 |
| CVE-2020-9031 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal v... | 6.5 - MEDIUM | 2020-02-17 | 2020-02-19 |
| CVE-2020-9030 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal v... | 6.5 - MEDIUM | 2020-02-17 | 2020-02-19 |
| CVE-2020-9029 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal v... | 6.5 - MEDIUM | 2020-02-17 | 2020-02-19 |
| CVE-2020-9028 | Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the ne... | 6.1 - MEDIUM | 2020-02-17 | 2020-02-19 |
Known software with vulnerabilities from Microchip
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Microchip | Advanced Software Framework 4 | - |
| Application | Microchip | Atmsamb11 Blusdk Smart | 6.2 |
| Hardware | Microchip | Atsama5d21c-cu | - |
| Operating System | Microchip | Atsama5d21c-cu Firmware | - |
| Hardware | Microchip | Atsama5d21c-cur | - |
| Operating System | Microchip | Atsama5d21c-cur Firmware | - |
| Hardware | Microchip | Atsama5d225c-d1m-cur | - |
| Operating System | Microchip | Atsama5d225c-d1m-cur Firmware | - |
| Hardware | Microchip | Atsama5d22c-cn | - |
| Operating System | Microchip | Atsama5d22c-cn Firmware | - |
| Hardware | Microchip | Atsama5d22c-cnr | - |
| Operating System | Microchip | Atsama5d22c-cnr Firmware | - |
| Hardware | Microchip | Atsama5d22c-cu | - |
| Operating System | Microchip | Atsama5d22c-cu Firmware | - |
| Hardware | Microchip | Atsama5d22c-cur | - |
| Operating System | Microchip | Atsama5d22c-cur Firmware | - |
| Hardware | Microchip | Atsama5d23c-cn | - |
| Operating System | Microchip | Atsama5d23c-cn Firmware | - |
| Hardware | Microchip | Atsama5d23c-cnr | - |
| Operating System | Microchip | Atsama5d23c-cnr Firmware | - |