Vulnerabilities > Ufactory > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-15 | CVE-2020-10285 | Insufficient Entropy vulnerability in Ufactory Xarm 5 Lite Firmware 1.5.0 The authentication implementation on the xArm controller has very low entropy, making it vulnerable to a brute-force attack. | 9.8 |
| 2020-07-15 | CVE-2020-10284 | Unspecified vulnerability in Ufactory Xarm Studio 1.3.0 No authentication is required to control the robot inside the network, moreso the latest available user manual shows an option that lets the user to add a password to the robot but as in xarm_studio 1.3.0 the option is missing from the menu. | 9.1 |