Use of hard-coded cryptographic key in SD-330AC and AMC Manager - CVE-2026-32958
Published: April 20, 2026
Vulnerability identifier: #VU126518
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2026-32958
CWE-ID: CWE-321
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: silex technology
Affected software:
SD-330AC
AMC Manager
SD-330AC
AMC Manager
Detailed vulnerability description
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to use of hard-coded cryptographic key. A remote attacker can direct a victim to apply a fake firmware update.
How to mitigate CVE-2026-32958
Install updates from vendor's website.