Summary
Vertiv patched two critical vulnerabilities (CVE-2025-46412 and CVE-2025-41426) in its UPS management cards that allow attackers to bypass authentication and execute remote code to shut down data center power.
Take Action:
Make sure your Vertiv Liebert UPS network cards (IS-UNITY-DP and RDU101) are isolated from the internet and reachable only from trusted internal networks or via VPN. Then apply the firmware updates ASAP. Review your UPS logs for any unexpected configuration changes or strange web requests.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)