CVE-2026-32964_CVE-2026-32964

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Description

SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences ('CRLF Injection') vulnerability. Processing some crafted configuration data may lead to arbitrary entries injected to the system configuration.

Basic Information

ID CVE-2026-32964

Source jpcert

Published Apr 20, 2026 at 03:17

Affected Product

Vendor silex technology, Inc.

Product SD-330AC

Version Ver.1.42 and earlier

Affected Versions silex technology, Inc. SD-330AC Ver.1.42 and earlier
silex technology, Inc. AMC Manager Ver.5.0.2 and earlier

CWE Classification

CWE-93

References

{
    "lastseen": "",
    "description": "SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences ('CRLF Injection') vulnerability. Processing some crafted configuration data may lead to arbitrary entries injected to the system configuration.",
    "published": "2026-04-20T03:17:52.839Z",
    "modified": "2026-04-20T03:17:52.839Z",
    "type": "cve",
    "title": "CVE-2026-32964",
    "source": "jpcert",
    "references": "https://www.silex.jp/support/security-advisories/en/2026-001\nhttps://www.silex.jp/support/security-advisories/2026-001\nhttps://jvn.jp/en/vu/JVNVU94271449/",
    "id": "CVE-2026-32964",
    "bulletinFamily": "",
    "cwe": [
        "CWE-93"
    ],
    "cvelist": null,
    "sourceData": "silex technology, Inc. SD-330AC Ver.1.42 and earlier\nsilex technology, Inc. AMC Manager Ver.5.0.2 and earlier",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SD-330AC",
    "version": "Ver.1.42 and earlier",
    "vendor": "silex technology, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}