Silex SD-330AC/AMC Manager Vulnerability Advisory: RCE, XSS, Auth Bypass (CVE-2026-32955 to CVE-2026-32965)

JVN#94271449 Vulnerability Summary Overview Multiple security vulnerabilities exist in Silex Technology’s SD-330AC and AMC Manager, including buffer overflows, missing authentication, hardcoded keys, weak encryption algorithms, and more. Impact Scope SD-330AC: Version 1.42 and earlier AMC Manager: Version 5.0.2 and earlier Remediation Firmware Updates: - SD-330AC firmware version 1.50 or later - AMC Manager version 5.1.0 or later Temporary Measures: - Disable HTTP/HTTPS services (for CVE-2026-32956, CVE-2026-32957, CVE-2026-32963) - Set a password for accessing the web interface (for CVE-2026-32958, CVE-2026-32965) - Disable SNMP service (for CVE-2015-5621) Key Vulnerability List CVE-2026-32955: Stack-based buffer overflow (CWE-121) CVE-2026-32956: Heap-based buffer overflow (CWE-122) CVE-2026-32957: Missing authentication for critical functions in firmware maintenance (CWE-306) CVE-2026-32958: Hardcoded cryptographic key (CWE-321) CVE-2026-32959: Use of broken or risky cryptographic algorithm (CWE-327) CVE-2026-32960: Sensitive information not removed before resource reuse (CWE-226) CVE-2026-32961: Heap-based buffer overflow in packet processing (CWE-122) CVE-2026-32962: Missing authentication for critical device configuration functions (CWE-306) CVE-2026-32963: Reflected cross-site scripting (CWE-79) CVE-2026-32964: CRLF injection (CWE-93) CVE-2026-32965: Unsafe default values used during resource initialization (CWE-1108) CVE-2015-5621: Reliance on vulnerable third-party component (CWE-1395) CVE-2024-24487: Incorrect privilege assignment (CWE-266) Impact Arbitrary code execution File upload Firmware update spoofing Man-in-the-middle attacks Denial of Service (DoS) Configuration tampering Cross-site scripting (XSS) CRLF injection Privilege escalation References JPCERT/CC Addendum

Goal Reached Thanks to every supporter — we hit 100%!

Silex SD-330AC/AMC Manager Vulnerability Advisory: RCE, XSS, Auth Bypass (CVE-2026-32955 to CVE-2026-32965)