CVE-2022-45192 : An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE

An issue was discovered on Microchip RN4870 1.43 devices. An attacker within BLE radio range can cause a denial of service by sending a cleartext encryption pause request.

Published 2023-02-08 00:15:09

Updated 2025-03-25 16:15:16

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2022-45192

Microchip » Rn4870 Firmware » Version: 1.43
cpe:2.3:o:microchip:rn4870_firmware:1.43:*:*:*:*:*:*:*
Matching versions
When used together with: Microchip » Rn4870 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-45192

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 7 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-45192

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-03-25
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

References for CVE-2022-45192

https://blediff.github.io/

BLEDiff | Scalable and Property-Agnostic Noncompliance Checking for BLE Implementations
Technical Description;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-45192

Products affected by CVE-2022-45192

Exploit prediction scoring system (EPSS) score for CVE-2022-45192

CVSS scores for CVE-2022-45192

References for CVE-2022-45192