"Forescout's research revealed 20 new vulnerabilities in Silex and Lantronix devices, including weaknesses that can be exploited without authentication, posing serious risks to critical systems."
"Using open-source intelligence, attackers can gather information about serial-to-IP converters, including internal IP addresses and vendor details, making them vulnerable to remote attacks."
Serial-to-IP converters, or serial device servers, connect legacy serial equipment to Ethernet/IP networks, enabling remote communication for industrial control systems. Research by Forescout Technologies identified numerous vulnerabilities in these devices, which are widely used across various sectors, including healthcare and energy. Attackers can exploit these vulnerabilities for OS command injection, remote code execution, and device takeovers. The vulnerabilities, tracked as BRIDGE:BREAK, affect devices from major manufacturers and pose significant risks to operational technology and critical infrastructure.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]