CVE-2020-10285

Summary

The authentication implementation on the xArm controller has very low entropy, making it vulnerable to a brute-force attack. There is no mechanism in place to mitigate or lockout automated attempts to gain access.

Affected Software

VendorProductVersion RangeStatus
uFactoryxArm5 Lite, xArm 6 and xArm 7v1.5.0 and beforeaffected

Weaknesses

  • CWE-307: CWE-307

ADP Enrichment

CVE Program Container

Additional References

References