Missing Authentication Vulnerability in RobotWare Enables Unauthorized File Access and Modification

Missing Authentication Vulnerability in RobotWare Enables Unauthorized File Access and Modification

CVE-2021-22279 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A Missing Authentication vulnerability in RobotWare for the OmniCore robot controller allows an attacker to read and modify files on the robot controller if the attacker has access to the Connected Services Gateway Ethernet port.

Learn more about our Cis Benchmark Audit For Robot Operating System.