Medium severity6.8NVD Advisory· Published Aug 21, 2020· Updated Jun 17, 2026
CVE-2020-10290
CVE-2020-10290
Description
Universal Robots controller execute URCaps (zip files containing Java-powered applications) without any permission restrictions and a wide API that presents many primitives that can compromise the overall robot operations as demonstrated in our video. In our PoC we demonstrate how a malicious actor could 'cook' a custom URCap that when deployed by the user (intendedly or unintendedly) compromises the system
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
1- github.com/aliasrobotics/RVD/issues/1495nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.