Bleeping Computer

APC UPS zero-day bugs can remotely burn out devices, disable power

A set of three critical zero-day vulnerabilities now tracked as TLStorm could let hackers take control of uninterruptible power supply (UPS) devices from APC, a subsidiary of Schneider Electric. The ...
ZDNet

UPS flaws allow for remote code execution and remote fire-based interruptions

Security researchers at Armis have detailed a trio of vulnerabilities in so-called Smart-UPS devices sold by Schneider Electric subsidiary APC that allow for unnoticeable remote code execution, ...
Threat Post

Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure

The ‘TLStorm’ vulnerabilities, found in APC Smart-UPS products, could allow attackers to cause both cyber and physical damage by taking down critical infrastructure. Three critical security ...