Vulnerabilities > Universal Robots > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-06 | CVE-2020-10265 | Missing Authentication for Critical Function vulnerability in Universal-Robots UR Software Universal Robots Robot Controllers Version CB2 SW Version 1.4 upwards, CB3 SW Version 3.0 and upwards, e-series SW Version 5.0 and upwards expose a service called DashBoard server at port 29999 that allows for control over core robot functions like starting/stopping programs, shutdown, reset safety and more. | 9.4 |
| 2018-07-11 | CVE-2018-10635 | Missing Authentication for Critical Function vulnerability in Universal-Robots Cb3.1 Firmware 3.4.5100 In Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100, ports 30001/TCP to 30003/TCP listen for arbitrary URScript code and execute the code. | 9.8 |
| 2018-07-11 | CVE-2018-10633 | Use of Hard-coded Credentials vulnerability in Universal-Robots Cb3.1 Firmware 3.4.5100 Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100 utilizes hard-coded credentials that may allow an attacker to reset passwords for the controller. | 9.8 |