Researchers uncovered 20 new vulnerabilities in popular serial-to-IP converters and found that their firmware stacks contain thousands of known defects, leaving industrial networks widely exposed. Forescout will present these findings at Black Hat Asia 2026, highlighting critical RCE flaws in Lantronix and Silex models (including CVE-2025-70082) and demonstrating how attackers can manipulate physical sensors and devices. #Lantronix #CVE-2025-70082
Keypoints
- Forescout identified 20 new vulnerabilities across popular serial-to-IP converter models from Lantronix and Silex.
- Several flaws allow remote code execution, with multiple issues rated critical (CVSS 9.8) including CVE-2025-70082.
- Firmware analysis found an average of 212 known OSS vulnerabilities per image and roughly 2,255 kernel bugs, with 63 labeled critical.
- There may be more than 10 million serial device servers worldwide, and tens of thousands are discoverable on the open web and have been targeted in major OT attacks.
- Patching is difficult for always-on industrial devices, and many lack modern binary hardening like ASLR, increasing exploitability.
Read More: https://www.darkreading.com/ics-ot-security/serial-ip-devices-thousands-of-bugs