CVE-2026-32957

EUVD-2026-23750
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue on firmware maintenance. Arbitrary file may be uploaded on the device without authentication.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
Affected Products (NVD)
VendorProductVersion
silextechnologysd-330ac_firmware
𝑥
< 1.50
silextechnologyamc_manager
𝑥
< 5.1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://jvn.jp/en/vu/JVNVU94271449/
https://www.silex.jp/support/security-advisories/2026-001
https://www.silex.jp/support/security-advisories/en/2026-001