HIGH🇵🇱 Wersja polska

CVE-2020-10264

CVSS 8.8v3.1pub. 2020-04-06upd. 2024-11-21

CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to the RTDE (Real-Time Data Exchange) interface on port 30004 which allows setting registers, the speed slider fraction as well as digital and analog Outputs. Additionally unautheticated reading of robot data is also possible

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Universal Robots Ur10

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur10e

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur3

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur3e

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur5

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur5e

    HW
    Universal-Robots
    wszystkie wersje
  • Universal Robots Ur Software

    APP
    Universal-Robots
    ≥ 5.03.0.14989 – 3.3.3.292
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-10265CRITICAL9.4ten sam produkt

Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, CB3 SW Version 3.0 and upwards, e-serie...

CVE-2020-10266HIGH8.1ten sam produkt

UR+ (Universal Robots+) is a platform of hardware and software component sellers, for Universal Robots robots....

CVE-2020-10267HIGH7.5ten sam produkt

Universal Robots control box CB 3.1 across firmware versions (tested on 1.12.1, 1.12, 1.11 and 1.10) does not ...

CVE-2018-10633CRITICAL9.8ten sam vendor

Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100 utilizes hard-coded credentials that m...

CVE-2018-10635CRITICAL9.8ten sam vendor

In Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100, ports 30001/TCP to 30003/TCP liste...