Unrated severityNVD Advisory· Published Oct 4, 2024· Updated May 23, 2025
XSS vulnerability in bannerconfig endpoint in TimeProvider 4100
CVE-2024-43687
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip TimeProvider 4100 (banner config modules) allows Cross-Site Scripting (XSS).This issue affects TimeProvider 4100: from 1.0 before 2.4.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=1.0, <2.4.7+ 1 more
- (no CPE)range: >=1.0, <2.4.7
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.