Vulnerability Details CVE-2020-10280
The Apache server on port 80 that host the web interface is vulnerable to a DoS by spamming incomplete HTTP headers, effectively blocking the access to the dashboard.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.9%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 5.0
References
Products affected by CVE-2020-10280
-
cpe:2.3:h:easyrobotics:er-flex:-
-
cpe:2.3:h:easyrobotics:er-lite:-
-
cpe:2.3:h:easyrobotics:er-one:-
-
cpe:2.3:h:easyrobotics:er200:-
-
cpe:2.3:h:mobile-industrial-robots:mir1000:-
-
cpe:2.3:h:mobile-industrial-robots:mir100:-
-
cpe:2.3:h:mobile-industrial-robots:mir200:-
-
cpe:2.3:h:mobile-industrial-robots:mir250:-
-
cpe:2.3:h:mobile-industrial-robots:mir500:-
-
cpe:2.3:h:uvd-robots:uvd:-
-
cpe:2.3:o:easyrobotics:er-flex_firmware:-
-
cpe:2.3:o:easyrobotics:er-lite_firmware:-
-
cpe:2.3:o:easyrobotics:er-one_firmware:-
-
cpe:2.3:o:easyrobotics:er200_firmware:-
-
cpe:2.3:o:mobile-industrial-robots:mir1000_firmware:-
-
cpe:2.3:o:mobile-industrial-robots:mir100_firmware:*
-
cpe:2.3:o:mobile-industrial-robots:mir200_firmware:-
-
cpe:2.3:o:mobile-industrial-robots:mir250_firmware:-
-
cpe:2.3:o:mobile-industrial-robots:mir500_firmware:-
-
cpe:2.3:o:uvd-robots:uvd_firmware:-