CVE-2020-10264
8.8
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
CB3 SW Version 3.3 and upwards, e-series SW Version 5.0 and upwards allow authenticated access to the RTDE (Real-Time Data Exchange) interface on port 30004 which allows setting registers, the speed slider fraction as well as digital and analog Outputs. Additionally unautheticated reading of robot data is also possible
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Universal Robots A/S | Universal Robots Robot Controllers CB 3.1 | CB3 SW Versions 3.3 up to 3.12.1 | affected |
| Universal Robots A/S | Universal Robots Robot Controllers e-Series | next of SW Versions 5.0 up to 5.7 < unspecified | affected |
Weaknesses
- CWE-200: CWE-200 Information Exposure
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.