Is Sd 330Ac affected by CVE-2026-32960?

Silex Technology SD-330AC access points and AMC Manager contain an authentication bypass vulnerability allowing remote attackers to obtain unauthorized administrative access through crafted network packets.

Sd 330Ac CVE-2026-32960

EUVD-2026-23753 HIGH

Sensitive Information in Resource Not Removed Before Reuse (CWE-226)

2026-04-20 jpcert

GHSA-g7hc-x6qw-m35g

Information Disclosure Sd 330Ac Amc Manager

7.1

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Scope

Lifecycle Timeline

Analysis Updated

Apr 20, 2026 - 04:30 vuln.today

v2 (cvss_changed)

Re-analysis Queued

Apr 20, 2026 - 04:22 vuln.today

cvss_changed

Severity Changed

Apr 20, 2026 - 04:22 NVD

MEDIUM HIGH

CVSS changed

Apr 20, 2026 - 04:22 NVD

6.5 (MEDIUM) 7.1 (HIGH)

Analysis Generated

Apr 20, 2026 - 04:10 vuln.today

DescriptionNVD

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet.

AnalysisAI

Authentication bypass in silex technology SD-330AC (≤1.42) and AMC Manager (≤5.0.2) allows remote attackers to gain unauthorized access by sending specially crafted packets that exploit residual sensitive data in memory. Attacker can log in without valid credentials due to improper clearance of authentication tokens or session data between requests. …

RemediationAI

Within 24 hours: Identify and inventory all Silex SD-330AC access points and AMC Manager instances in your environment. Within 7 days: Isolate affected devices to restricted network segments and disable remote administrative access where operationally feasible; contact Silex Technology for patch availability and timeline. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-32960 vulnerability details – vuln.today

Back

Sd 330Ac CVE-2026-32960

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Sd 330Ac CVE-2026-32960

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code