CNNVD-202510-2593 Information

CNNVD ID

CNNVD-202510-2593

Related CVE

CVE-2025-47902

• CNNVD Published: 2025-10-20

Description (Chinese)

Microchip TimeProvider 4100是美国微芯科技（Microchip）公司的一种网关时钟。 Microchip TimeProvider 4100 2.5之前版本存在安全漏洞，该漏洞源于特殊元素中和不当，可能导致SQL注入攻击。

Description (English)

Microchip TimeProvider 4100 is a gateway clock for Microchip. The previous version of Microchip TimeProvider 4100 2.5 had a security loophole, which originated in an inappropriate combination of special elements and could lead to an attack by SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

微芯科技

Published

2025-10-20

Last Modified

2026-02-24

References

https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/timeprovider-4100-grandmaster-remote-sql-command-injection-47902 https://access.redhat.com/security/cve/cve-2025-47902

Patch

https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/timeprovider-4100-grandmaster-remote-command-execution