Silextechnology Amc Manager vulnerabilities
11 known vulnerabilities affecting silextechnology/amc_manager.
Total CVEs
11
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM8
Vulnerabilities
Page 1 of 1
CVE-2026-32955P2HIGHCVSS 8.8fixed in 5.1.02026-04-20
CVE-2026-32955 [HIGH] CWE-121 CVE-2026-32955: SD-330AC and AMC Manager provided by silex technology, Inc. contain a stack-based buffer overflow vu
SD-330AC and AMC Manager provided by silex technology, Inc. contain a stack-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device.
nvd
CVE-2026-32956P3CRITICALCVSS 9.8fixed in 5.1.02026-04-20
CVE-2026-32956 [CRITICAL] CWE-122 CVE-2026-32956: SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vul
SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device.
nvd
CVE-2026-32965P3HIGHCVSS 7.5fixed in 5.1.02026-04-20
CVE-2026-32965 [HIGH] CWE-1188 CVE-2026-32965: Initialization of a resource with an insecure default vulnerability exists in SD-330AC and AMC Manag
Initialization of a resource with an insecure default vulnerability exists in SD-330AC and AMC Manager provided by silex technology, Inc. When the affected device is connected to the network with the initial (factory-default) configuration, the device can be configured with the null string password.
nvd
CVE-2026-32964P3MEDIUMCVSS 6.5fixed in 5.1.02026-04-20
CVE-2026-32964 [MEDIUM] CWE-93 CVE-2026-32964: SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CR
SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences ('CRLF Injection') vulnerability. Processing some crafted configuration data may lead to arbitrary entries injected to the system configuration.
nvd
CVE-2026-32957P3MEDIUMCVSS 5.3fixed in 5.1.02026-04-20
CVE-2026-32957 [MEDIUM] CWE-306 CVE-2026-32957: SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for cri
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue on firmware maintenance. Arbitrary file may be uploaded on the device without authentication.
nvd
CVE-2026-32962P3MEDIUMCVSS 5.3fixed in 5.1.02026-04-20
CVE-2026-32962 [MEDIUM] CWE-306 CVE-2026-32962: SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for cri
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue. The device configuration may be altered without authentication.
nvd
CVE-2026-32960P4MEDIUMCVSS 6.5fixed in 5.1.02026-04-20
CVE-2026-32960 [MEDIUM] CWE-226 CVE-2026-32960: SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive inform
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet.
nvd
CVE-2026-32958P4MEDIUMCVSS 6.5fixed in 5.1.02026-04-20
CVE-2026-32958 [MEDIUM] CWE-321 CVE-2026-32958: SD-330AC and AMC Manager provided by silex technology, Inc. use a hard-coded cryptographic key. An a
SD-330AC and AMC Manager provided by silex technology, Inc. use a hard-coded cryptographic key. An administrative user may be directed to apply a fake firmware update.
nvd
CVE-2026-32961P4MEDIUMCVSS 5.3fixed in 5.1.02026-04-20
CVE-2026-32961 [MEDIUM] CWE-122 CVE-2026-32961: SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vul
SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in packet data processing of sx_smpd. Processing a crafted packet may cause a temporary denial-of-service (DoS) condition.
nvd
CVE-2026-32959P4MEDIUMCVSS 5.9fixed in 5.1.02026-04-20
CVE-2026-32959 [MEDIUM] CWE-327 CVE-2026-32959: SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a use of a broken
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a use of a broken or risky cryptographic algorithm. Information in the traffic may be retrieved via man-in-the-middle attack.
nvd
CVE-2026-32963P4MEDIUMCVSS 5.1fixed in 5.1.02026-04-20
CVE-2026-32963 [MEDIUM] CWE-79 CVE-2026-32963: SD-330AC and AMC Manager provided by silex technology, Inc. contain a reflected cross-site scripting
SD-330AC and AMC Manager provided by silex technology, Inc. contain a reflected cross-site scripting vulnerability. When a user logs in to the affected device and access some crafted web page, arbitrary script may be executed on the user's browser.
nvd