GCVE - cpe:2.3:h:microchip:bm70:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:microchip:bm70:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Microchip (`838cafee-4381-5a32-ab83-9c6c625fa8b6`)
Product	Bm70 (`aae43d07-7418-5889-b682-5a24b3729a11`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-46403`	not_vulnerable	2026-06-03 14:48:26.035400	Details available The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages. Published: 2022-12-19T00:00:00.000Z Updated: 2025-04-17T14:09:15.080Z Open on db.gcve.eu Reference links https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM https://microchip.com https://www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/deviating-behaviors-in-bluetooth-le	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-46402`	not_vulnerable	2026-06-03 14:48:26.034550	Details available The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values. Published: 2022-12-19T00:00:00.000Z Updated: 2025-04-17T14:12:34.120Z Open on db.gcve.eu Reference links https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM https://microchip.com https://www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/deviating-behaviors-in-bluetooth-le	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-46401`	not_vulnerable	2026-06-03 14:48:26.029046	Details available The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete. Published: 2022-12-19T00:00:00.000Z Updated: 2025-04-17T14:29:14.157Z Open on db.gcve.eu Reference links https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM https://microchip.com https://www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/deviating-behaviors-in-bluetooth-le	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-46400`	not_vulnerable	2026-06-03 14:48:26.028149	Details available The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing. Published: 2022-12-19T00:00:00.000Z Updated: 2025-04-17T14:30:49.785Z Open on db.gcve.eu Reference links https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM https://microchip.com https://www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/deviating-behaviors-in-bluetooth-le	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-46399`	not_vulnerable	2026-06-03 14:48:26.018140	Details available The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero. Published: 2022-12-19T00:00:00.000Z Updated: 2025-04-17T14:36:42.589Z Open on db.gcve.eu Reference links https://www.computer.org/csdl/proceedings/sp/2023/1He7WWuJExG https://www.computer.org/csdl/proceedings-article/sp/2023/933600a521/1He7Yja1AYM https://microchip.com https://www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/deviating-behaviors-in-bluetooth-le	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.