A CISA advisory reveals that firmware for the USR‑W610 RS232/485 to Wi‑Fi/Ethernet converter embeds plaintext admin credentials. The flaw scores 9.8 on the CVSS scale and applies to version 7.03T.07, a model used worldwide in critical manufacturing.
The vulnerability allows anyone who can extract the firmware – a straightforward reverse‑engineering step – to log in as administrator without authentication. Once inside, an attacker could reconfigure network settings, install malicious code, or move laterally into connected control‑system networks.
For operators, the risk is immediate: the device sits at the edge of industrial networks, often exposed to remote access for monitoring. hard‑coded passwords undermine the very premise of secure remote management and repeat a pattern seen in other IoT‑focused gear, where manufacturers prioritize cost over security.
CISA notes no public exploits yet, but the advisory urges firewalls, VPNs, and strict network segmentation. The vendor has not responded, leaving users to rely on firmware updates or replacement.