Summary
Universal Robots patched a critical command injection vulnerability (CVE-2026-8153) in its PolyScope 5 operating system that allows unauthenticated attackers to execute remote code and take control of industrial cobots.
Take Action:
If you operate Universal Robots running PolyScope 5, upgrade ASAP to version 5.25.1. Never expose your industrial robot controllers directly to the public internet, and if the update cannot be applied immediately, disable the Dashboard Server interface in the Services tab (or restrict access to strictly trusted hosts via the General tab).
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)