CVE-2020-10270

Out of the wired and wireless interfaces within MiR100, MiR200 and other vehicles from the MiR fleet, it's possible to access the Control Dashboard on a hardcoded IP address. Credentials to such wireless interface default to well known and widely spread users (omitted) and passwords (omitted). This information is also available in past User Guides and manuals which the vendor distributed. This flaw allows cyber attackers to take control of the robot remotely and make use of the default user interfaces MiR has created, lowering the complexity of attacks and making them available to entry-level attackers. More elaborated attacks can also be established by clearing authentication and sending network requests directly. We have confirmed this flaw in MiR100 and MiR200 but according to the vendor, it might also apply to MiR250, MiR500 and MiR1000.
References
Link Resource
https://github.com/aliasrobotics/RVD/issues/2557 Exploit Third Party Advisory
https://github.com/aliasrobotics/RVD/issues/2557 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:aliasrobotics:mir100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aliasrobotics:mir100:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:aliasrobotics:mir200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aliasrobotics:mir200:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:aliasrobotics:mir250_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aliasrobotics:mir250:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:aliasrobotics:mir500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aliasrobotics:mir500:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:aliasrobotics:mir1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aliasrobotics:mir1000:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:mobile-industrial-robotics:er200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mobile-industrial-robotics:er200:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:enabled-robotics:er-lite_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:enabled-robotics:er-lite:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:enabled-robotics:er-flex_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:enabled-robotics:er-flex:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:enabled-robotics:er-one_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:enabled-robotics:er-one:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:uvd-robots:uvd_robots_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:uvd-robots:uvd_robots:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:55

Type Values Removed Values Added
References () https://github.com/aliasrobotics/RVD/issues/2557 - Exploit, Third Party Advisory () https://github.com/aliasrobotics/RVD/issues/2557 - Exploit, Third Party Advisory

Information

Published : 2020-06-24 05:15

Updated : 2024-11-21 04:55


NVD link : CVE-2020-10270

Mitre link : CVE-2020-10270

CVE.ORG link : CVE-2020-10270


JSON object : View

Products Affected

uvd-robots

  • uvd_robots_firmware
  • uvd_robots

aliasrobotics

  • mir200
  • mir250
  • mir1000
  • mir100_firmware
  • mir100
  • mir500
  • mir200_firmware
  • mir250_firmware
  • mir1000_firmware
  • mir500_firmware

enabled-robotics

  • er-one_firmware
  • er-flex
  • er-lite_firmware
  • er-lite
  • er-one
  • er-flex_firmware

mobile-industrial-robotics

  • er200_firmware
  • er200
CWE
CWE-798

Use of Hard-coded Credentials