Approved changes feed: RSS · Atom

cpe:2.3:h:ufactory:xarm_5_lite:-:*:*:*:*:*:*:*

part: h version: - update: *

VendorUfactory (dd235221-d098-5015-86ab-2b31c66b64fb)
ProductXarm 5 Lite (362c0613-f3f2-5f80-9dd7-cdb0d8578561)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-10286 not_vulnerable 2026-06-08 05:16:35.114565 RVD#3323: Mismanaged permission implementation leads to privilege escalation, exfiltration of sensitive information, and DoS
CRITICAL (9.4)
the main user account has restricted privileges but is in the sudoers group and there is not any mechanism in place to prevent sudo su or sudo -i to be run gaining unrestricted access to sensible files, encryption, or issue orders that disrupt robot operation.
Published: 2020-07-15T21:15:13.859Z
Updated: 2024-09-17T00:22:04.212Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-10285 not_vulnerable 2026-06-08 05:16:35.113172 RVD#3322: Weak authentication implementation make the system vulnerable to a brute-force attack over adjacent networks
CRITICAL (9.4)
The authentication implementation on the xArm controller has very low entropy, making it vulnerable to a brute-force attack. There is no mechanism in place to mitigate or lockout automated attempts to gain access.
Published: 2020-07-15T21:00:14.468Z
Updated: 2024-09-17T02:32:51.974Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.