Universal Robots PolyScope OS Command Injection Vulnerability in Dashboard Server

Vulnerability

A command injection vulnerability has been identified in the Dashboard Server interface of Universal Robots PolyScope versions prior to 5.21.1. This vulnerability allows an unauthenticated attacker to send crafted commands that execute code on the robot's operating system.

Impact

Exploitation of this vulnerability allows for unauthorized OS command execution on the robot.

Added: May 8, 2026, 12:22 PM

Updated: May 8, 2026, 12:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.9

remediation

0.0

relevance

7.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.9

remediation

0.0

relevance

7.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Universal Robots PolyScope OS Command Injection Vulnerability in Dashboard Server

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating