Back

Critical Vulnerabilities Found in Vertiv UPS Network Cards

Severity: High (Score: 72.8)

Sources: www.claroty.com, Facilitiesdive

Published: 2026-06-09 · Updated: 2026-06-10

Keywords: network, cards, vulnerabilities, vertiv, data, team82, companies

Severity indicators: vulnerabilities

Summary

Team82 identified two critical vulnerabilities in Vertiv's Liebert IS-UNITY-DP network cards, both rated 9.8 on the CVSSv3 scale. The vulnerabilities, CVE-2025-46412 and CVE-2025-41426, allow for authentication bypass and remote code execution, posing significant risks to data centers reliant on these uninterruptible power supply (UPS) devices. Successful exploitation could enable attackers to disrupt power operations and execute arbitrary code, potentially affecting entire facilities. Vertiv has released firmware updates to mitigate these vulnerabilities, urging users to upgrade to specific versions. The vulnerabilities were disclosed on June 9, 2026, and are critical for organizations using Vertiv UPS systems. Key Points: • Two critical vulnerabilities (CVE-2025-46412, CVE-2025-41426) found in Vertiv UPS network cards. • Exploits could allow attackers to disrupt power operations and execute arbitrary code. • Vertiv recommends immediate firmware updates to mitigate these vulnerabilities.

Detailed Analysis

**Impact** Data centers and critical infrastructure sectors using Vertiv’s Liebert IS-UNITY-DP and RDU101 UPS network cards are affected globally. Successful exploitation could disrupt power operations, causing sudden shutdowns of servers, routers, and control systems, potentially impacting entire facilities. The vulnerabilities threaten operational uptime and service reliability, with no specific data breach or data loss reported. The scope includes organizations reliant on UPS devices for power stability and safe shutdowns. **Technical Details** Two critical vulnerabilities, CVE-2025-46412 (authentication bypass) and CVE-2025-41426 (stack-based buffer overflow enabling remote code execution), both scored 9.8 CVSSv3, affect Vertiv’s Liebert IS-UNITY-DP and RDU101 network cards. Attackers can exploit these flaws via the web-based interface to gain unauthorized access and execute arbitrary code, potentially causing denial of service or forced shutdowns of UPS-powered devices. The attack vector involves network access to the UPS communication cards, primarily during the kill chain stages of initial access and execution. No specific malware or IOCs were provided. **Recommended Response** Apply Vertiv’s firmware updates immediately: Liebert RDU101 to version v1.9.1.2_0000001 and IS-UNITY to v8.4.3.1_00160. Monitor network traffic for unauthorized access attempts to UPS web interfaces and suspicious commands such as “output OFF.” Harden network segmentation around UPS management interfaces and restrict access to trusted administrators. If patching is delayed, increase monitoring for anomalous UPS behavior and unauthorized configuration changes.

Source articles (3)

  • Vulnerabilities discovered in Trane, Vertiv data center products — Facilitiesdive · 2026-06-09
    The companies are addressing the risks with updates, according to Team82 of cybersecurity company Claroty, which found and shared the vulnerabilities with the companies. A part of cybersecurity firm C…
  • Turning Up The Heat Hacking Trane Hvac Controllers — www.claroty.com · 2026-06-09
    Team82 identified a chain of severe, highly exploitable vulnerabilities in the widely deployed Trane Tracer SC+ HVAC controller affecting up to version v5.20.1362. The flaws include an authentication…
  • Attacking Ups Network Cards To Take Down Data Centers — www.claroty.com · 2026-06-09
    Team82 uncovered two critical vulnerabilities in Vertiv’s Liebert IS-UNITY-DP network cards , both assessed a CVSSv3 score of 9.8. These cards are a network interface for Vertiv’s line of uninterrupti…

Timeline

  • 2025-05-21 — CVE-2025-46412 published: Authentication bypass vulnerability discovered in Vertiv's UPS network cards, allowing unauthorized access.
  • 2025-05-21 — CVE-2025-41426 published: Stack-based buffer overflow vulnerability identified, enabling remote code execution on affected devices.
  • 2026-06-09 — Vulnerabilities disclosed: Team82 published findings on critical vulnerabilities in Vertiv UPS network cards, urging immediate action.
  • 2026-06-09 — Firmware updates recommended: Vertiv advised users to update to specific firmware versions to address the identified vulnerabilities.

CVEs

  • CVE-2025-41426
  • CVE-2025-46412
  • CVE-2026-28252
  • CVE-2026-28253
  • CVE-2026-28254
  • CVE-2026-28255
  • CVE-2026-28256

Related entities

  • Data Breach (Attack Type)
  • DDoS (Attack Type)
  • Trane (Company)
  • Vertiv (Company)
  • CWE-120 - Classic Buffer Overflow (Cwe)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
  • CWE-287 - Improper Authentication (Cwe)
  • CWE-798 - Use of Hard-coded Credentials (Cwe)
  • CWE-862 - Missing Authorization (Cwe)
  • cve-2026-28255.by (Domain)
  • T1021.004 - SSH (Mitre Attack)
  • T1021 - Remote Services (Mitre Attack)
  • T1190 - Exploit Public-Facing Application (Mitre Attack)
  • Liebert Is-unity-dp (Platform)
  • Liebert Rdu101 (Platform)
  • Linux (Platform)
  • Linux ARM 32 Bit (Platform)
  • Linux PowerPC (Platform)
  • RaspberryPi (Platform)
  • Trane Tracer Concierge (Platform)
  • Apache Httpd (Platform)
  • VMware vSphere (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed