|
1321
|
7.5 |
HIGH
Network
|
emqx
|
nanomq
|
NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Versions prior to 0.24.11 have a remotely triggerable heap buffer overflow in the `uri_param_parse` function of NanoMQ's REST API…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-32135
|
2026-04-23 02:32 |
2026-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1322
|
5.3 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue. The device configuration may be altered without authentication.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-32962
|
2026-04-23 02:30 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1323
|
7.5 |
HIGH
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
Initialization of a resource with an insecure default vulnerability exists in SD-330AC and AMC Manager provided by silex technology, Inc. When the affected device is connected to the network with the…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2026-32965
|
2026-04-23 02:29 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1324
|
6.5 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences ('CRLF Injection') vulnerability. Processing some crafted configuration data may lead …
|
CWE-93
CRLF Injection
|
CVE-2026-32964
|
2026-04-23 02:29 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1325
|
- |
|
-
|
-
|
Rejected reason: Voluntarily withdrawn
|
-
|
CVE-2026-35382
|
2026-04-23 02:16 |
2026-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1326
|
6.1 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a reflected cross-site scripting vulnerability. When a user logs in to the affected device and access some crafted web page, arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2026-32963
|
2026-04-23 02:09 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1327
|
5.3 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in packet data processing of sx_smpd. Processing a crafted packet may cause a temporary …
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-32961
|
2026-04-23 02:02 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1328
|
6.5 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing th…
|
CWE-226
Sensitive Information in Resource Not Removed Before Reuse
|
CVE-2026-32960
|
2026-04-23 02:01 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1329
|
5.9 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a use of a broken or risky cryptographic algorithm. Information in the traffic may be retrieved via man-in-the-middle…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2026-32959
|
2026-04-23 02:00 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1330
|
6.5 |
MEDIUM
Network
|
silextechnology
|
sd-330ac_firmware
amc_manager
|
SD-330AC and AMC Manager provided by silex technology, Inc. use a hard-coded cryptographic key. An administrative user may be directed to apply a fake firmware update.
|
CWE-321
Use of Hard-coded Cryptographic Key
|
CVE-2026-32958
|
2026-04-23 02:00 |
2026-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
