CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Remote code execution flaw in Universal Robots PolyScope 5 Dashboard Server enables unauthenticated takeover of collaborative robots

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A critical command injection vulnerability (CVE-2026-8153) in Universal Robots PolyScope 5 Dashboard Server allows unauthenticated attackers with network access to execute arbitrary commands on the robot’s Linux-based controller, achieving remote code execution (RCE) and full administrative control. The flaw resides in improper input neutralization within the Dashboard Server interface, enabling attackers to manipulate OT environments where collaborative robots (cobots) are deployed across manufacturing, logistics, automotive, healthcare, and other industrial sectors. Exploitation risks sabotage of manufacturing workflows, production shutdowns, ransomware deployment, data destruction, and manipulation of robotic precision and calibration. Safety hazards include disabling safeguards, altering programmed movements, or interrupting safety logic, potentially endangering human operators and causing physical harm or environmental incidents. CVE-2026-8153 carries a CVSS 3.1 base score of 9.8 and requires the Dashboard Server to be enabled and reachable via its network port; direct internet exposure is not typical due to standard OT network segmentation practices.

Timeline

  1. 20.05.2026 19:12 1 articles · 3h ago

    Critical RCE vulnerability in Universal Robots PolyScope 5 disclosed and patched

    Universal Robots disclosed and patched CVE-2026-8153, a command injection flaw in PolyScope 5 Dashboard Server enabling unauthenticated remote code execution (RCE) on collaborative robot controllers. The flaw carries a CVSS 3.1 score of 9.8 and affects Linux-based robotic systems deployed across manufacturing, logistics, automotive, healthcare, and other industrial OT environments. Exploitation risks disruption of interconnected OT assets, data sabotage, and safety hazards including manipulation of robotic movements and disabling of safeguards. Universal Robots recommends immediate upgrade to version 5.25.1 or newer and advises disabling the Dashboard Server when unused, alongside network segmentation and access controls.

    Show sources
    Open in new tab

Information Snippets

  • CVE-2026-8153 is a command injection vulnerability in the Dashboard Server interface of Universal Robots PolyScope 5, a Linux-based OS for collaborative robotic systems (cobots).

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • The flaw stems from improper neutralization of user-controlled input passed to the underlying OS, enabling unauthenticated attackers to execute arbitrary commands on the robot controller.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • Remote exploitation requires network access to the Dashboard Server port and is only feasible if the Dashboard Server is enabled in the PolyScope 5 UI; direct internet exposure is not standard.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • CVE-2026-8153 has a CVSS 3.1 base score of 9.8, indicating critical severity and remote code execution (RCE) capability with administrative-level control over the robotic controller.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • Universal Robots has released a patch in PolyScope 5 version 5.25.1 or newer, crediting Vera Mens of Claroty Team82 with discovery and responsible disclosure via CISA and CERT/CC’s VINCE platform.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • Exploitation impacts confidentiality, integrity, and availability of PolyScope 5 systems and can disrupt interconnected OT assets such as PLCs, MES platforms, ERP applications, and remote management infrastructure.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources

  • Potential outcomes include production shutdowns, sabotage of workflows, ransomware deployment, data destruction, manipulation of robotic precision and calibration, and safety-critical consequences such as disabling safeguards or altering programmed movements.

    First reported: 20.05.2026 19:12
    1 source, 1 article
    Show sources