CVE-2026-8153

CRITICAL NVD

CVSS Score 9.8

Severity CRITICAL

Published May 08, 2026

Vendor unknown

Description

OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.21.1 allows unauthenticated attacker to craft commands that will execute code on the robot's OS.

References

https://www.universal-robots.com/developer/communication-protocol/dashboard-server/