Widely used UPS devices can be hijacked and destroyed remotely

Three vulnerabilities in ubiquitous APC Smart-UPS (uninterruptible power supply) devices could allow remote attackers to use them as an attack vector, disable or completely destroy them, Armis researchers have discovered. The vulnerable devices, developed by Schneider Electric subsidiary APC, are used all around the globe to provide emergency backup power for critical physical infrastructure (industrial facilities, hospitals, energy suppliers, data centers, etc.) The vulnerabilities in APC Smart-UPS devices The three vulnerabilities (CVE-2022-22805, CVE-2022-22806, and CVE-2022-0715) have collectively been dubbed TLStorm.

Read full article on Help Net Security

 


Date:

Categorie(s):