CVE 9.8 CRITICAL

Command injection in Dashboard Server interface_CVE-2026-8153

May 8, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.21.1 allows unauthenticated attacker to craft commands that will execute code on the robot's OS.

AI Analysis

OS command injection vulnerability in PolyScope 5 Dashboard Server interface

Basic Information

ID CVE-2026-8153

Source TRO

Published May 8, 2026 at 11:45

Affected Product

Vendor Universal Robots

Product PolyScope 5

Affected Versions Universal Robots PolyScope 5 0

CWE Classification

CWE-78

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Universal Robots

Product PolyScope 5

Version < 5.21.1

References

www.universal-robots.com /developer/communication-protocol/dashboard-server/

{
    "lastseen": "",
    "description": "OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.21.1 allows unauthenticated attacker to\u00a0craft commands that will execute code on the robot's OS.",
    "published": "2026-05-08T11:45:18.462Z",
    "modified": "2026-05-08T11:45:18.462Z",
    "type": "cve",
    "title": "Command injection in Dashboard Server interface",
    "source": "TRO",
    "references": "https://www.universal-robots.com/developer/communication-protocol/dashboard-server/",
    "id": "CVE-2026-8153",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Universal Robots PolyScope 5 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "PolyScope 5",
    "version": "0",
    "vendor": "Universal Robots",
    "ai_description": "OS command injection vulnerability in PolyScope 5 Dashboard Server interface",
    "ai_severity": "Critical",
    "ai_vendor": "Universal Robots",
    "ai_product": "PolyScope 5",
    "ai_version": "< 5.21.1",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply