Hacking UPS network cards to shut down data centers and banks: two critical flaws in Vertiv. ππ₯π₯·π»ππ₯
Security researcher and hardware hacker Vera Mens, in her recent blog post, shares details of a new and creative way to take down data centers - by attacking UPS network cards using two critical vulnerabilities.
Vertivβs Liebert IS-UNITY-DP network cards are primarily used in high-availability systems such as data centers, telecom hubs, hospitals, and banking infrastructure.
Two vulnerabilities that were recently discovered are:
πͺ«CVE-2025-46412 - an authentication bypass vulnerability
πͺ«CVE-2025-41426 - a stack-based buffer overflow vulnerability
If you are using these cards, please update them ASAP. For the rest of us, enjoy this solid and very interesting research. And stay safe.
More details:
Attacking UPS Network Cards to Take Down Data Centers [Blog]: https://claroty.com/team82/research/attacking-ups-network-cards-to-take-down-data-centers
