CVE-2026-1633NVD

Vulnerability Summary

The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes its web management interface without requiring authentication, allowing unauthenticated users to modify critical device settings or factory reset the device.

Severity Level

CRITICAL(10.0)

Published Date

Feb 4, 2026

Last Modified

Feb 4, 2026

Exploitation Status

????

EPSS Score (30-Day)

Data Pending

Root Weakness (CWE)

CWE-306: Unknown/Unlisted Weakness ↗

Refer to the official MITRE database for detailed architectural specifications regarding this weakness.

CVSS v4.0 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

External References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-034-04.json
https://www.cisa.gov/news-events/ics-advisories/icsa-26-034-04

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-1633NVD

Vulnerability Summary

External References