{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32326", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "state": "PUBLISHED", "assignerShortName": "jpcert", "dateReserved": "2026-03-12T06:43:35.484Z", "datePublished": "2026-03-25T07:38:20.672Z", "dateUpdated": "2026-03-25T13:26:49.064Z"}, "containers": {"cna": {"affected": [{"vendor": "Sharp Corporation", "product": "home 5G HR01", "versions": [{"version": "38JP_0_490 and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "home 5G HR02", "versions": [{"version": "S5.A1.00 and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-52A", "versions": [{"version": "38JP_2_03J and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-52B", "versions": [{"version": "S3.87.15 and earlierr", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-54C", "versions": [{"version": "S6.64.00 and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "5G Mobile Router SH-U01", "versions": [{"version": "S4.48.00 and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "Pocket WiFi 5G A503SH", "versions": [{"version": "S7.41.00 and earlier", "status": "affected"}]}, {"vendor": "Sharp Corporation", "product": "Speed Wi-Fi 5G X01", "versions": [{"version": "3RJP_2_03I and earlier", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "SHARP routers do not perform authentication for some web APIs. The device information may be retrieved without authentication. If the administrative password of the device is left as the initial one, the device may be taken over."}], "problemTypes": [{"descriptions": [{"description": "Missing authentication for critical function", "lang": "en-US", "cweId": "CWE-306", "type": "CWE"}]}], "references": [{"url": "https://global.sharp/corporate/info/product-security/advisory-list/2026-002/"}, {"url": "https://jvn.jp/en/jp/JVN49524110/"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_0": {"version": "3.0", "baseSeverity": "MEDIUM", "baseScore": 5.7, "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}, {"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV4_0": {"version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"}}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-03-25T07:38:20.672Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-25T13:26:41.257984Z", "id": "CVE-2026-32326", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:26:49.064Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-32326", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-25T13:26:41.257984Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:26:45.602Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 5.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"version": "4.0", "baseScore": 6.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Sharp Corporation", "product": "home 5G HR01", "versions": [{"status": "affected", "version": "38JP_0_490 and earlier"}]}, {"vendor": "Sharp Corporation", "product": "home 5G HR02", "versions": [{"status": "affected", "version": "S5.A1.00 and earlier"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-52A", "versions": [{"status": "affected", "version": "38JP_2_03J and earlier"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-52B", "versions": [{"status": "affected", "version": "S3.87.15 and earlierr"}]}, {"vendor": "Sharp Corporation", "product": "Wi-Fi STATION SH-54C", "versions": [{"status": "affected", "version": "S6.64.00 and earlier"}]}, {"vendor": "Sharp Corporation", "product": "5G Mobile Router SH-U01", "versions": [{"status": "affected", "version": "S4.48.00 and earlier"}]}, {"vendor": "Sharp Corporation", "product": "Pocket WiFi 5G A503SH", "versions": [{"status": "affected", "version": "S7.41.00 and earlier"}]}, {"vendor": "Sharp Corporation", "product": "Speed Wi-Fi 5G X01", "versions": [{"status": "affected", "version": "3RJP_2_03I and earlier"}]}], "references": [{"url": "https://global.sharp/corporate/info/product-security/advisory-list/2026-002/"}, {"url": "https://jvn.jp/en/jp/JVN49524110/"}], "descriptions": [{"lang": "en", "value": "SHARP routers do not perform authentication for some web APIs. The device information may be retrieved without authentication. If the administrative password of the device is left as the initial one, the device may be taken over."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-306", "description": "Missing authentication for critical function"}]}], "providerMetadata": {"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert", "dateUpdated": "2026-03-25T07:38:20.672Z"}}}, "cveMetadata": {"cveId": "CVE-2026-32326", "state": "PUBLISHED", "dateUpdated": "2026-03-25T13:26:49.064Z", "dateReserved": "2026-03-12T06:43:35.484Z", "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "datePublished": "2026-03-25T07:38:20.672Z", "assignerShortName": "jpcert"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "SHARP routers do not perform authentication for some web APIs. The device information may be retrieved without authentication. If the administrative password of the device is left as the initial one, the device may be taken over."}], "id": "CVE-2026-32326", "lastModified": "2026-03-25T15:41:33.977", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 5.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 2.1, "impactScore": 3.6, "source": "vultures@jpcert.or.jp", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "vultures@jpcert.or.jp", "type": "Secondary"}]}, "published": "2026-03-25T08:16:22.547", "references": [{"source": "vultures@jpcert.or.jp", "url": "https://global.sharp/corporate/info/product-security/advisory-list/2026-002/"}, {"source": "vultures@jpcert.or.jp", "url": "https://jvn.jp/en/jp/JVN49524110/"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "vultures@jpcert.or.jp", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,S4.48.00]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "5G Mobile Router SH-U01", "source": "cna", "vendor": "Sharp Corporation"}, "product": "5g_mobile_router_sh-u01", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,38JP_0_490]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "home 5G HR01", "source": "cna", "vendor": "Sharp Corporation"}, "product": "home_5g_hr01", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,S5.A1.00]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "home 5G HR02", "source": "cna", "vendor": "Sharp Corporation"}, "product": "home_5g_hr02", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,S7.41.00]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Pocket WiFi 5G A503SH", "source": "cna", "vendor": "Sharp Corporation"}, "product": "pocket_wifi_5g_a503sh", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,3RJP_2_03I]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Speed Wi-Fi 5G X01", "source": "cna", "vendor": "Sharp Corporation"}, "product": "speed_wi-fi_5g_x01", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,38JP_2_03J]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Wi-Fi STATION SH-52A", "source": "cna", "vendor": "Sharp Corporation"}, "product": "wi-fi_station_sh-52a", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,S3.87.15]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Wi-Fi STATION SH-52B", "source": "cna", "vendor": "Sharp Corporation"}, "product": "wi-fi_station_sh-52b", "vendor": "sharp"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,S6.64.00]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Wi-Fi STATION SH-54C", "source": "cna", "vendor": "Sharp Corporation"}, "product": "wi-fi_station_sh-54c", "vendor": "sharp"}], "analysis": {"en": {"generated_at": "2026-03-25T09:20:26.971704+00:00", "value": {"mitigation_remediation": ["Apply the latest firmware update provided by Sharp to remediate the authentication bypass.", "Change the default administrative password to a strong, unique password.", "If remote management is unnecessary, disable remote access or block traffic to the affected web API ports.", "Monitor the device logs for any unauthorized access attempts and review network traffic for anomalous activity."], "summary": {"action": "Apply Patch", "impact": "Device Takeover"}, "threat_synthesis": {"affected_systems": "Sharp Corporation's 5G Mobile Router SH-U01, Pocket WiFi 5G A503SH, Speed Wi-Fi 5G X01, Wi-Fi STATION SH-52A, Wi-Fi STATION SH-52B, Wi-Fi STATION SH-54C, home 5G HR01, and home 5G HR02 are impacted. Version information is not specified, but all models shipped before the recent advisory are potentially vulnerable.", "description_and_impact": "The routers lack authentication for certain web APIs, allowing anyone on the network to retrieve device information without credentials. If the device's administrative password remains set to the factory default, the attacker can gain full administrative control, effectively taking over the device. This issue is classified as an authentication bypass vulnerability (CWE-306).", "risk_and_exploitability": "The CVSS score of 6.9 indicates a medium-to-high severity. With no credentials required, an attacker who can reach the device over the network can automatically access the vulnerable endpoints, retrieve configuration data, and, if default credentials are still in use, assume administrative privileges. While the EPSS score is not available and the vulnerability is not listed in KEV, the lack of authentication makes exploitation straightforward and the potential impact significant."}}}}, "created": "2026-03-25T11:35:38.116633+00:00", "title": "Unauthorized Access to Sharp 5G Routers via Unauthenticated Web APIs", "updated": "2026-03-25T21:15:54.261249+00:00", "vendors": ["sharp", "sharp$PRODUCT$5g_mobile_router_sh-u01", "sharp$PRODUCT$home_5g_hr01", "sharp$PRODUCT$home_5g_hr02", "sharp$PRODUCT$pocket_wifi_5g_a503sh", "sharp$PRODUCT$speed_wi-fi_5g_x01", "sharp$PRODUCT$wi-fi_station_sh-52a", "sharp$PRODUCT$wi-fi_station_sh-52b", "sharp$PRODUCT$wi-fi_station_sh-54c"]}