OTPulse
FeedAboutContact

Synectix LAN 232 TRIO

Act Now10ICS-CERT ICSA-26-034-04Feb 3, 2026
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

The Synectix LAN 232 TRIO contains a vulnerability that allows an unauthenticated attacker with network access to modify critical device settings or perform a factory reset. All versions are affected. Synectix is no longer in business, and no firmware fixes or patches are available. The product is considered end-of-life.

What this means
What could happen
An unauthenticated attacker on your network could reset the LAN 232 TRIO to factory defaults or modify critical settings, causing loss of communication or control of any equipment connected to this device until reconfigured.
Who's at risk
Water utilities and municipalities using Synectix LAN 232 TRIO serial communication converters or gateways for legacy equipment connectivity should be concerned. These are often used to bridge older Modbus RTU devices to modern networks, and loss of configuration could disrupt SCADA communications or PLC connectivity.
How it could be exploited
An attacker with network access to the device can send crafted requests to the device interface to trigger administrative functions without providing any credentials. The attack requires only network reachability and knowledge of the device's IP address.
Prerequisites
  • Network access to the LAN 232 TRIO device
  • No authentication credentials required
remotely exploitableno authentication requiredlow complexityno patch availableend-of-life product
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
LAN 232 TRIO: vers:all/*All versionsNo fix (EOL)
Remediation & Mitigation
0/3
Do now
0/1
WORKAROUNDSegment the LAN 232 TRIO on an isolated network or VLAN with strict firewall rules to limit who can reach the device
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HARDENINGMonitor network traffic to and from the device for suspicious administrative commands or reset requests
Mitigations - no patch available
0/1
LAN 232 TRIO: vers:all/* has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:
HARDENINGReplace the LAN 232 TRIO with a supported device from an active vendor that receives security updates
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/bc22caa0-5e4a-4aa2-9993-527b18d9df5a
Synectix LAN 232 TRIO | CVSS 10 - OTPulse