Galaxy VS, Galaxy VL, Galaxy VXL
Act Now10SEVD-2025-133-05May 13, 2025
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
Schneider Electric Galaxy VS, VL, and VXL UPS systems contain a vulnerability in the embedded Erlang/OTP SSH Server component. This vulnerability allows unauthenticated remote code execution (RCE) over the network, which could impact UPS monitoring capabilities and disrupt power delivery operations. The vulnerability is actively being exploited.
What this means
What could happen
An attacker with network access could execute arbitrary code on the UPS management system without credentials, potentially disrupting monitoring capabilities and UPS operation in your data center or facility.
Who's at risk
Data center operators and facility managers running Schneider Electric Galaxy VS, VL, or VXL uninterruptible power supplies (UPS) who rely on these devices for critical power delivery and monitoring in energy facilities, server rooms, or other business-critical infrastructure.
How it could be exploited
An attacker connects to the SSH server running on the Galaxy UPS device over the network. They send a malformed SSH protocol message to trigger the Erlang/OTP SSH vulnerability, allowing code execution without authentication. This could allow them to alter UPS settings, disable monitoring, or stop power delivery.
Prerequisites
- Network connectivity to the SSH port on the Galaxy UPS device (typically port 22)
- No authentication credentials required
Remotely exploitableNo authentication requiredLow complexity attackActively exploited (KEV)High EPSS score (50.3%)Critical CVSS score (10.0)Affects UPS monitoring and operation
Exploitability
Actively exploited — confirmed by CISA KEV
Affected products (3)
3 with fix
ProductAffected VersionsFix Status
Galaxy VS≤ 6.118.06.123.0
Galaxy VL≤ 18.5.018.10.0
Galaxy VXL≤ 15.21.015.29.0
Remediation & Mitigation
0/5
Do now
0/4Galaxy VS
HOTFIXUpgrade Galaxy VS to firmware version 6.123.0 or later
Galaxy VL
HOTFIXUpgrade Galaxy VL to firmware version 18.10.0 or later
Galaxy VXL
HOTFIXUpgrade Galaxy VXL to firmware version 15.29.0 or later
All products
WORKAROUNDRestrict network access to the Galaxy UPS SSH port (port 22) using firewall rules—only allow connections from authorized management workstations or monitoring systems
Long-term hardening
0/1HARDENINGSegment the UPS management network from untrusted networks; isolate data center management interfaces on a separate VLAN with strict access controls
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/477c7986-f084-4aa7-9f2e-be5636ef9ae1