Authentication Error Vulnerability in Various Schneider Electric Products

The Schneider Electric APC Smart-UPS SMC Series, among others, is a product of Schneider Electric, a French company. The Schneider Electric APC Smart-UPS SMT Series is a line interactive power protection for servers, point-of-sale, routers, switches, hubs and other network equipment. The Schneider Electric APC Smart-UPS SRT Series is a high-density, true double conversion inline power protection. Several Schneider Electric products are vulnerable to an authentication error that could be exploited by attackers to upload malicious firmware and modify the behavior of the uninterruptible power supply at will.