CVE Catalog

CVE-2026-8153

Critical
Published: Translated: NVD NIST

Summary

The Dashboard Server interface in Universal Robots PolyScope versions prior to 5.25.1 is vulnerable to OS command injection, allowing an unauthenticated attacker to craft commands that execute code on the robot's OS.

Risk Assessment

An attacker could gain full control over the robot's operating system, potentially leading to serious security risks for operations and data.

Recommendation

It is recommended to update the software to version 5.25.1 or later to mitigate this vulnerability.

Original NVD description (English source)

OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.25.1 allows unauthenticated attacker to craft commands that will execute code on the robot's OS.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS