CVE-2025-9497 | Microchip Time Provider 4100 up to 2.4.x Software Update hard-coded credentials

Inserito da Angelo Barbosa | Mar 28, 2026 | CVE

A vulnerability classified as critical was found in Microchip Time Provider 4100 up to 2.4.x. The affected element is an unknown function of the component Software Update Handler. Such manipulation leads to hard-coded credentials.

This vulnerability is traded as CVE-2025-9497. An attack has to be approached locally. There is no exploit available.

Upgrading the affected component is advised.

CVE-2025-9497 | Microchip Time Provider 4100 up to 2.4.x Software Update hard-coded credentials

Post correlati

CVE-2025-43255 | Apple macOS AppleIntelKBLGraphics out-of-bounds

CVE-2024-27923 | grav Phar File unrestricted upload

CVE-2025-10742 | Truelysell Core Plugin up to 1.8.6 on WordPress Shortcode truelysell_edit_staff improper authentication

CVE-2025-65590 | nopCommerce 4.90.0 Content Management Area cross site scripting