Missing Authentication in SD-330AC and AMC Manager by Silex Technology
CVE-2026-32957

6.9MEDIUM

Key Information:

Vendor: Silex Technology, Inc.
Status: Sd-330ac; Amc Manager
Vendor: CVE Published:; 20 April 2026

🔔 Create Silex Technology, Inc. Vulnerability Alert

What is CVE-2026-32957?

A security flaw exists in SD-330AC and AMC Manager, where critical functions related to firmware maintenance lack proper authentication. This oversight enables unauthorized users to upload arbitrary files onto the device, potentially compromising its functionality and security. Organizations utilizing these products should take immediate action to mitigate the risks associated with this vulnerability.

Affected Version(s)

AMC Manager Ver.5.0.2 and earlier

SD-330AC Ver.1.42 and earlier

References

https://www.silex.jp/support/security-advisories/en/2026-001

https://www.silex.jp/support/security-advisories/2026-001

https://jvn.jp/en/vu/JVNVU94271449/

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 20, 2026
Vulnerability Reserved
Mar 17, 2026

CVE-2026-32957 Data

JSON