High severity7.5NVD Advisory· Published Aug 5, 2021· Updated Jun 17, 2026
CVE-2021-37605
CVE-2021-37605
Description
In version 6.5 Microchip MiWi software and all previous versions including legacy products, the stack is validating only two out of four Message Integrity Check (MIC) bytes.
Affected products
2- Microchip/MiWi softwaredescription
Patches
Vulnerability mechanics
References
6- ww1.microchip.com/downloads/en/DeviceDoc/asf-release-notes-3.50.0.100-readme.pdfnvdVendor Advisory
- ww1.microchip.com/downloads/en/DeviceDoc/asf-release-notes-3.51.0.101-readme.pdfnvdRelease NotesVendor Advisory
- www.microchip.com/en-us/development-tools-tools-and-software/libraries-code-examples-and-more/advanced-software-framework-for-sam-devicesnvdVendor Advisory
- www.microchip.com/en-us/products/wireless-connectivity/software-vulnerability-response/miwi-software-vulnerabilitynvdVendor Advisory
- www.microchip.com/en-us/products/wireless-connectivity/sub-ghz/miwi-protocolnvdVendor Advisory
- www.microchip.com/product-change-notifications/nvdVendor Advisory
News mentions
0No linked articles in our index yet.