CVE-2024-9054

HIGH

Microchip TimeProvider 4100 Firmware 1.0-2.4.6 - OS Command Injection in Configuration Modules

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-9054. PoCs published by Armando Huesca Prida.

AI-analyzed exploit summary This exploit demonstrates an OS command injection vulnerability in Microchip TimeProvider 4100 via the 'secret_key' XML tag in configuration files. The payload executes upon login attempt after restoring a malicious configuration.

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Microchip TimeProvider 4100 (Configuration modules) allows Command Injection.This issue affects TimeProvider 4100: from 1.0 before 2.4.7.

Exploits (1)

exploitdb WORKING POC

by Armando Huesca Prida · remotehardware

https://www.exploit-db.com/exploits/52119

View Code ZIP pw:eip

This exploit demonstrates an OS command injection vulnerability in Microchip TimeProvider 4100 via the 'secret_key' XML tag in configuration files. The payload executes upon login attempt after restoring a malicious configuration.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microchip TimeProvider 4100 (Firmware 1.0 through 2.4.7)

Auth required

Prerequisites: Valid session cookie · Access to configuration backup/restore functionality · Clear-text web account password

MITRE ATT&CK

T1202 - Indirect Command Execution T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory

https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/timeprovider-4100-grandmaster-rce-through-configuration-file

Exploit, Third Party Advisory third-party-advisory

https://www.gruppotim.it/it/footer/red-team.html

Scores

CVSS v3 8.8

EPSS 0.1461

EPSS Percentile 96.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-78

Status published

Products (1)

microchip/timeprovider_4100_firmware 1.0 - 2.4.7

Published Oct 04, 2024

Tracked Since Feb 18, 2026