CVE-2020-10278 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-10278 PUBLISHED CVSS 6.099999904632568 MEDIUM

The BIOS onboard MiR's Computer is not protected by password, therefore, it allows a Bad Operator to modify settings such as boot order. This can be leveraged by a Malicious operator to boot from a Live Image.

EPSS 0.22% · 44.7th percentile

Risk Scores

CVSS v3.0

6.099999904632568

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:H

EPSS Score

0.22%

44.7th percentile

Affected Products

Vendor	Product	Versions
uvd-robots	uvd_robots_firmware	0
aliasrobotics	mir500_firmware	0
mobile-industrial-robotics	er200_firmware	0
enabled-robotics	er-one_firmware	0
aliasrobotics	mir1000_firmware	0
Mobile Industrial Robots A/S	MiR100	v2.8.1.1 and before
enabled-robotics	er-lite_firmware	0
aliasrobotics	mir250_firmware	0
enabled-robotics	er-flex_firmware	0
aliasrobotics	mir100_firmware	0
aliasrobotics	mir200_firmware	0

Timeline

Jun 24, 2020 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Dec 25, 2021 EPSS Score
Feb 25, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Nov 1, 2022 EPSS Score

References

Open in Interactive Console →