PT-2023-14635 · Microchip · Rn4870
Published
2023-02-07
·
Updated
2025-03-25
·
CVE-2022-45192
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Microchip RN4870 version 1.43
Description
An issue was discovered that allows an attacker within BLE radio range to cause a denial of service by sending a cleartext encryption pause request.
Recommendations
For Microchip RN4870 version 1.43, consider implementing measures to restrict or regulate incoming BLE requests to prevent denial of service attacks, such as filtering out cleartext encryption pause requests. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Rn4870