CVE-2026-1633CRITICAL 10.0EPSS p41.6%

CVE-2026-1633CVE-2026-1633

Description

The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes its web management interface without requiring authentication, allowing unauthenticated users to modify critical device settings or factory reset the device.

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS0.55% probability of exploitation · percentile 41.6% · 2026-06-19T12:03:05Z
Published2026-02-04
Last modified2026-04-15

Underlying weaknesses· 1

CWE-306

References

  1. https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-034-04.json
  2. https://www.cisa.gov/news-events/ics-advisories/icsa-26-034-04

1

TypeTargetConfidenceTier
WeaknessMissing Authentication for Critical Functioncwe-3060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-0418
CVE
CVE-2026-0416
CVE
CVE-2026-9211
CVE
CVE-2026-1632
CVE
CVE-2026-25715
CVE
CVE-2025-28202
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.