ServerAndClientTimeFilter, AjaxServerAndClientTimeFilter and ServerHostNameAndTimeFilter all render inline script tags. Because these tags are rendered in a non-standard way, the nonce is not added, violating the CSP.
These filters all put status information in window.defaultStatus. This property has been deprecated for years and support has been removed in most (if not all) browsers. My suggestion is to deprecate these classes in core and remove the one in examples. In the deprecated version, there is no need to fix the CSP violation.