22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters
22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters — Ravie LakshmananApr 21, 2026Network Security / Vulnerability [https:
What’s new: Researchers have identified 22 vulnerabilities in Lantronix and Silex serial-to-IP converters, collectively named BRIDGE:BREAK. These flaws could allow attackers to hijack devices and tamper with data. Approximately 20,000 devices are exposed online, with vulnerabilities including remote code execution, denial-of-service, and authentication bypass.
Who’s affected
Vulnerable models include Lantronix EDS3000PS Series, EDS5000 Series, and Silex SD330-AC. Specific CVE IDs include CVE-2026-32955, CVE-2026-32956, CVE-2026-32961, among others.
What to do
- Apply security updates provided by Lantronix and Silex.
- Replace default credentials and avoid weak passwords.
- Segment networks to limit access to vulnerable devices.
- Avoid exposing these devices to the internet.
