|
221
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in langflow-ai langflow up to 1.8.3. The affected element is the function create_project/encrypt_auth_settings of the file src/backend/base/Langflow/api/v1/…
New
|
CWE-312
CWE-313
Cleartext Storage of Sensitive Information
Cleartext Storage in a File or on Disk
|
CVE-2026-6598
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222
|
7.5 |
HIGH
Network
|
-
|
-
|
Initialization of a resource with an insecure default vulnerability exists in SD-330AC and AMC Manager provided by silex technology, Inc. When the affected device is connected to the network with the…
New
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2026-32965
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223
|
6.5 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences ('CRLF Injection') vulnerability. Processing some crafted configuration data may lead …
New
|
CWE-93
CRLF Injection
|
CVE-2026-32964
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224
|
6.1 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a reflected cross-site scripting vulnerability. When a user logs in to the affected device and access some crafted web page, arbitr…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-32963
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
225
|
5.3 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue. The device configuration may be altered without authentication.
New
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-32962
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226
|
5.3 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in packet data processing of sx_smpd. Processing a crafted packet may cause a temporary …
New
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-32961
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
227
|
6.5 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing th…
New
|
CWE-226
Sensitive Information in Resource Not Removed Before Reuse
|
CVE-2026-32960
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
228
|
5.9 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a use of a broken or risky cryptographic algorithm. Information in the traffic may be retrieved via man-in-the-middle…
New
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2026-32959
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
229
|
6.5 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. use a hard-coded cryptographic key. An administrative user may be directed to apply a fake firmware update.
New
|
CWE-321
Use of Hard-coded Cryptographic Key
|
CVE-2026-32958
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
230
|
5.3 |
MEDIUM
Network
|
-
|
-
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue on firmware maintenance. Arbitrary file may be uploaded on the device without …
New
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-32957
|
2026-04-20 13:16 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
