3 matches found
CVE-2020-10265
The CVE-2020-10265 entry covers UR Universal Robots Robot Controllers (CB2 1.4+, CB3 3.0+, e-series 5.0+) exposing a DashBoard server on port 29999 that allows control over core robot functions (start/stop programs, shutdown, reset safety, etc.) without authentication/authorization. This unauthen...
CVE-2020-10267
CVE-2020-10267 affects the Universal Robots control box CB 3.1 (firmware versions 1.12.1, 1.12, 1.11, 1.10) where UR+ URCaps artifacts are stored under /root/.urcaps as plain zip files containing logic for UR3/UR5/UR10. The underlying issue is that these intellectual property artifacts are not en...
CVE-2020-10264
CVE-2020-10264 affects CB3 SW (v3.3+) and e-series SW (v5.0+) where the RTDE interface on port 30004 can be accessed in ways described in the records: authenticated access allows setting registers, adjusting the speed slider, and controlling digital/analog outputs, and there is also unauthenticat...