Vulnerability Details CVE-2020-10265
Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, CB3 SW Version 3.0 and upwards, e-series SW Version 5.0 and upwards expose a service called DashBoard server at port 29999 that allows for control over core robot functions like starting/stopping programs, shutdown, reset safety and more. The DashBoard server is not protected by any kind of authentication or authorization.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.3%
CVSS Severity
CVSS v3 Score 9.4
CVSS v2 Score 9.0
References
Products affected by CVE-2020-10265
-
cpe:2.3:a:universal-robots:ur_software:1.4.6899
-
cpe:2.3:a:universal-robots:ur_software:3.0.14989
-
cpe:2.3:a:universal-robots:ur_software:3.1.16916
-
cpe:2.3:a:universal-robots:ur_software:3.1.17141
-
cpe:2.3:a:universal-robots:ur_software:3.1.17336
-
cpe:2.3:a:universal-robots:ur_software:3.1.17779
-
cpe:2.3:a:universal-robots:ur_software:3.1.18024
-
cpe:2.3:a:universal-robots:ur_software:3.1.18213
-
cpe:2.3:a:universal-robots:ur_software:3.2.20175
-
cpe:2.3:a:universal-robots:ur_software:3.2.21545
-
cpe:2.3:a:universal-robots:ur_software:3.3.0.145
-
cpe:2.3:a:universal-robots:ur_software:3.3.1.237
-
cpe:2.3:a:universal-robots:ur_software:3.3.2.266
-
cpe:2.3:a:universal-robots:ur_software:3.3.3.292
-
cpe:2.3:a:universal-robots:ur_software:3.3.4.310
-
cpe:2.3:a:universal-robots:ur_software:5.1.0
-
cpe:2.3:a:universal-robots:ur_software:5.1.1
-
cpe:2.3:a:universal-robots:ur_software:5.1.2
-
cpe:2.3:a:universal-robots:ur_software:5.2.0
-
cpe:2.3:a:universal-robots:ur_software:5.2.061336
-
cpe:2.3:a:universal-robots:ur_software:5.2.1
-
cpe:2.3:a:universal-robots:ur_software:5.2.1.61344
-
cpe:2.3:a:universal-robots:ur_software:5.3.0
-
cpe:2.3:a:universal-robots:ur_software:5.3.1
-
cpe:2.3:a:universal-robots:ur_software:5.4.0
-
cpe:2.3:a:universal-robots:ur_software:5.4.2
-
cpe:2.3:a:universal-robots:ur_software:5.4.3
-
cpe:2.3:a:universal-robots:ur_software:5.5.1
-
cpe:2.3:a:universal-robots:ur_software:5.6.0
-
cpe:2.3:a:universal-robots:ur_software:5.7.0
-
cpe:2.3:h:universal-robots:ur10:-
-
cpe:2.3:h:universal-robots:ur10e:-
-
cpe:2.3:h:universal-robots:ur3:-
-
cpe:2.3:h:universal-robots:ur3e:-
-
cpe:2.3:h:universal-robots:ur5:-
-
cpe:2.3:h:universal-robots:ur5e:-