Authentication Bypass Vulnerability in Synectix LAN 232 TRIO 3-Port Serial to Ethernet Adapter
CVE-2026-1633

10CRITICAL

Key Information:

Vendor: Synectix
Status: Lan 232 Trio
Vendor: CVE Published:; 3 February 2026

What is CVE-2026-1633?

The Synectix LAN 232 TRIO 3-Port Serial to Ethernet Adapter presents a significant security risk by exposing its web management interface without any authentication requirements. This vulnerability allows unauthorized users to access and modify critical device configurations, including the potential for a factory reset, thereby jeopardizing the integrity and functionality of the device. Ensuring proper authentication mechanisms are implemented is crucial to safeguarding against this type of vulnerability.

Affected Version(s)

LAN 232 TRIO All versions

References

https://www.cisa.gov/news-events/ics-advisories/icsa-26-0...

https://github.com/cisagov/CSAF/blob/develop/csaf_files/O...

CVSS V4

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2026
Vulnerability Reserved
Jan 29, 2026

Credit

Souvik Kandar of MicroSec reported this vulnerability to CISA

CVE-2026-1633 Data

JSON