VYPR

Urx

by Ircu

CVEs (2)

  • CVE-2020-10266HigApr 6, 2020
    risk 0.53cvss 8.1epss 0.00

    UR+ (Universal Robots+) is a platform of hardware and software component sellers, for Universal Robots robots. When installing any of these components in the robots (e.g. in the UR10), no integrity checks are performed. Moreover, the SDK for making such components can be easily…

  • CVE-2020-10290MedAug 21, 2020
    risk 0.44cvss 6.8epss 0.00

    Universal Robots controller execute URCaps (zip files containing Java-powered applications) without any permission restrictions and a wide API that presents many primitives that can compromise the overall robot operations as demonstrated in our video. In our PoC we demonstrate…