CYBERSECURITY researchers have identified BRIDGE:BREAK, a set of 22 vulnerabilities across Lantronix and Silex serial-to-IP converters, which could allow attackers to hijack devices and tamper with data exchanged by them. The flaws affect as many as eight security weaknesses in Lantronix EDS3000PS and EDS5000 Series and 14 in Silex SD330-AC, with potential impacts including remote code execution, authentication bypass, and device takeover.
The vulnerabilities are collectively tracked with numerous CVEs, such as CVE-2026-32955, CVE-2026-32956, CVE-2026-32961 and others listed in the report, spanning remote and client-side code execution, DoS, and information disclosure, among others. Successful exploitation could disrupt serial communications, enable lateral movement, and tamper with sensor values or actuator behaviour.
Found that nearly 20,000 Serial-to-Ethernet converters have been exposed online globally, according to Forescout Research Vedere Labs, which coined the BRIDGE:BREAK name. Lantronix and Silex have released firmware updates for the affected series, and users are advised to replace default credentials, use stronger passwords, segment networks, and avoid exposing these devices to the internet.