CVE-2026-12621

UNKNOWN 0.0

Cross-Site Scripting (XSS) Vulnerability in Password Reset Redirect in GridTime™ 3000 GNSS Time Server

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper neutralization of input during web page generation XSS vulnerability in the GridTime 3000 (password reset form) allows XSS. This issue affects GridTime 3000: from 1.0r0.03 before 1.2r0.0.

CWE	CWE-79
Vendor	microchip
Product	gridtime 3000
Published	Jun 19, 2026

Stay Ahead of the Next One

Get instant alerts for microchip gridtime 3000

Be the first to know when new unknown vulnerabilities affecting microchip gridtime 3000 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Microchip / GridTime 3000

1.0r0.03 ≤ 1.1r0.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

microchip.com: https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/gridtime-3000-gnss-time-server-dom-xss