What is GHSA-4766-4px9-j9m3?

GHSA-4766-4px9-j9m3 is a security advisory published by GitHub Security Advisories with Medium severity. The GridTime 3000 GNSS Time Server leaks the access token in the URL parameters of some endpoints...

Which CVE IDs does GHSA-4766-4px9-j9m3 cover?

GHSA-4766-4px9-j9m3 covers the following CVE IDs: CVE-2026-12620. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

GHSA-4766-4px9-j9m3Medium

The GridTime 3000 GNSS Time Server leaks the access token in the URL parameters of some endpoints...

Vendor

GitHub Security Advisories

Published

June 19, 2026

Last Modified

June 19, 2026

🔗 CVE IDs covered (1)

CVE-2026-12620 →

📋 Description

The GridTime 3000 GNSS Time Server leaks the access token in the URL parameters of some endpoints.

This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-12620
https://www.microchip.com/en-us/solutions/technologies/embedded-security/how-to-report-potential-product-security-vulnerabilities/gridtime-3000-gnss-time-server-access-token-exposure
https://github.com/advisories/GHSA-4766-4px9-j9m3