CNNVD-202510-2594 Information

CNNVD ID

CNNVD-202510-2594

Related CVE

CVE-2025-47901

• CNNVD Published: 2025-10-20

Description (Chinese)

Microchip TimeProvider 4100是美国微芯科技（Microchip）公司的一种网关时钟。 Microchip TimeProvider 4100 2.5之前版本存在安全漏洞，该漏洞源于特殊元素中和不当，可能导致OS命令注入。

Description (English)

Microchip TimeProvider 4100 is a gateway clock for Microchip. There was a security loophole in the previous version of Microchip TimeProvider 4100 2.5, which originated in a special element and could lead to an OS command injection.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

微芯科技

Published

2025-10-20

Last Modified

2026-02-24

References

https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/timeprovider-4100-grandmaster-remote-command-execution-47901 https://access.redhat.com/security/cve/cve-2025-47901

Patch

https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/timeprovider-4100-grandmaster-remote-command-execution