Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

xarm_studio

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

1
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2020-10284
Assigner-Alias Robotics S.L.
ShareView Details
Assigner-Alias Robotics S.L.
CVSS Score-9.1||CRITICAL
EPSS-0.46% / 63.12%
||
7 Day CHG~0.00%
Published-15 Jul, 2020 | 19:25
Updated-16 Sep, 2024 | 23:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
RVD#3321: No Authentication required to exert manual control of the robot

No authentication is required to control the robot inside the network, moreso the latest available user manual shows an option that lets the user to add a password to the robot but as in xarm_studio 1.3.0 the option is missing from the menu. Assuming manual control, even by forcefully removing the current operator from an active session.

Action-Not Available
Vendor-ufactoryuFactory
Product-xarm_studioxArm5 Lite, xArm 6 and xArm 7
CWE ID-CWE-656
Reliance on Security Through Obscurity